End-of-Life (EoL)

Role-based Permission Levels

Describes the RBAC permission level for each category when adding to edit roles.
When editing rule based control (RBAC) permission levels or creating new user roles you can set permission levels to the following Cortex XSOAR components:
Component
Description
Account Management (
Multi-tenant
)
Enables you to configure and manage the multi-tenant deployment, such as add/delete a host, change hosts, move to HA group, etc.
If you have Read or read/write permissions, you can select whether the role can sync content to tenant accounts.
Investigations
Sets the permission level generally for investigations or sets different permission levels for data and chats. You can also limit the role to exclude executing potential harmful actions when building your own integrations.
Incident table actions
Limits table actions in the
Incidents
page, such as delete, edit, close, and so on.
Jobs
Limits permissions for managing jobs.
Scripts
Limits permissions for managing scripts. If the user has read/write permissions, you can enable users to create scripts that run as a Super User.
In the
Script
page, you can define which roles are permitted to run an automation, and according to which role the automation executes.
Playbooks
Limits permissions for creating, editing and deleting Playbooks.
You can also add, change, and remove roles from a playbook when clicking
Settings
in the
Playbooks
page. There are several notes and limitations you should familiarize yourself with when assigning roles to playbooks.
Settings
You can set the permission level generally for all settings or split them according to the following:
Users
: includes invitations and editing permissions.
Integrations
: whether a user can add, edit or delete instances.
Credentials
: whether a user can add, edit, or delete credentials.
Administration
Limits permissions for server configurations, editing layouts for indicators and incidents, integration permissions, audit trails and the password policy.
Propagation labels (
Multi-tenant)
Enables you to do the following:
Read
: Enables you to select from existing propagation labels.
Read/Write
: Enables you to create new and select from existing propagation labels
Marketplace
View Marketplace
: Enables you to view the Marketplace.
Install Content Pack
: install, upgrade, downgrade, and delete Content Pack content.
Contribute to Marketplace
: Enables you to contribute a Content Pack in the Contributions tab or generally.
Page Access
Select the pages you want the user to have access to.
Pre-set Role Queries
Select the Pre-set Query per Role for each of the available components.

Recommended For You