Role-based access control (RBAC) enables you to manage roles or specific permissions, and assign access rights to administrative users in the following areas in Cortex XDR , where the role options to configure change slightly depending on where you access these RBAC settings.
Gateway—Select → → where you can define Permission Management for one or more tenants by selecting the Permissions and Roles subcategories.
Cortex XDR Access Management—Select → → where you can define Access Management for a specific tenant by selecting the Users, Roles, and User Groups subcategories. In addition, you can also set manage user access permissions for the various Cortex Query Language (XQL) datasets as part of managing roles.
You can manage roles for all Cortex XDR apps and services. By assigning roles, you enforce the separation of viewing access and initiating actions among functional or regional areas of your organization. Cortex XDR provides a number of predefined Palo Alto Networks roles to assign access rights to Cortex XDR users.