Integration Permissions - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
8
Creation date
2024-09-18
Last date published
2024-10-14
Category
Administrator Guide
Solution
Cloud
Retire_Doc
Retiring
Link_to_new_Doc
/r/Cortex-XSOAR/8/Cortex-XSOAR-Cloud-Documentation
Abstract

Integration permissions enable you to assign permissions to commands in integrations. Use role based access control (RBAC) to assign commands.

You can use Role Based Access Control (RBAC) to assign commands at the integration instance level. If you have multiple instances of the same integration, you can assign different roles (permission levels) for the same command in each instance.

Note

To restrict access to integrations using RBAC, see Manage Roles.

If you want to view or edit integration permissions, go to Settings & InfoSettingsIntegrationsIntegration Permissions. You can see a list of all the enabled integrations in Cortex XSOAR. Under each integration you can see the following:

  • INSTANCE: Lists all instances for the integration.

  • COMMANDS: Lists all commands for the integration.

  • PERMITTED ROLES: Lists the roles you can assign to the command.

Users that do not have command permissions cannot do the following:

  • Run the command from the CLI (!).

  • Complete pending tasks in a Work Plan that run the command.

  • Edit arguments for playbook tasks that have this command.

  • Select the command when editing a playbook.

  • Select a script if using a reputation command.