Define a Role - Administrator Guide - 6.6 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Cortex XSOAR
Creation date
Last date published
Administrator Guide

Define a new role in Cortex XSOAR and choose the category permission level. Nested roles, active directory, saml, page access, shifts.

Cortex XSOAR comes with three roles with default permissions. You can add as many new roles as you need and combine them with other roles, such as single sign on.

  1. In the Roles tab, click New.

  2. In the Role name field, type the name for the new role.

  3. Select the Role-based Permission Levels.

  4. To assign the role to an active directory group, in the AD Roles Mapping section, from the dropdown list, select the group as required.

  5. To assign a role to a single sign on group, in the SAML Roles Mapping section, from the dropdown list, select the group as required.

    To associate roles to an AD or SAML group, you need to add a SAML instance and configure your identity provider.

    Users can log into Cortex XSOAR with their Active Directory or SAML user name and passwords. Their permission in Cortex XSOAR is set according to the groups and mapping set in Active Directory or SSO. For more information, Authenticate Users with SAML 2.0.

  6. If you want to associate the role with another role, in the Nested Roles section, from the dropdown list, select the nested role, as required.

    The Nested Role overrides any settings you select in the Roles tab. If you add a nested role, the role has both the nested role permissions and its own permissions. For example, if when editing Role A’s permissions, in the Nested Role section, you add Role B, Role A has both the permissions of Role B and the permissions of Role A.

  7. To add a shift period to the role, in the Shifts field, click + Add Shift and define the required period.

    Weekly shifts start on Sunday and are specified in the UTC time zone.

  8. Click Save.