Manage roles in Cortex Gateway - Administrator Guide - 8 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Cloud Documentation

Product
Cortex XSOAR
Version
8
Creation date
2024-03-07
Last date published
2024-12-12
Category
Administrator Guide
Solution
Cloud
Abstract

View, create, edit, and delete roles in Cortex Gateway.

Cortex Gateway is a centralized portal for managing tenants, users, roles, and user groups.

Note

You must have an Account Admin role to manage tenants, users, roles, and user groups in Cortex Gateway.

When you log into Cortex Gateway you can see the available tenants according to Cortex products, which you can manage according to your CSP account, including activation and licenses.

In the Permission Management page, in the Roles tab, you can manage roles created in Cortex Gateway or the tenant.

You can view, create, and edit roles and permissions that have been created in Cortex Gateway (All Tenants) or a tenant. If you create a new role, it applies to all tenants. For example, you may want a management role to have the same permissions across all tenants. To limit them to a specific tenant, create the role in the tenant.

When right-clicking a role, you can perform several actions, such as editing a role, saving it as a new role, and removing a role (deleting a role that is not assigned to a user).

Create a role

The roles you create provide more granular access control. You can add as many new roles as you need and combine them with user groups. You can set permission levels for viewing pages, limit potential actions, limit job actions, and limit scripts.

Note

You must have an Account Admin role to create or edit a role.

You cannot define advanced settings such as managing shifts or setting default dashboards in Cortex Gateway, as these are exclusive to the Cortex XSOAR tenant.

We recommend copying and modifying out-of-the-box roles.

  1. In Cortex Gateway, go to Permission ManagementRolesNew Role.

  2. Add the Role name and a meaningful Description.

  3. In the Components tab, define the role-based permissions and save the role.

    For more information about the components tab, see Role-based permissions in Cortex XSOAR.

  4. You can create user groups and add roles to them (recommended), assign roles directly to users after they have been added, or both.