User permissions¶
See below for a full list of features/permission sets and individual permissions that can be granted to users through user groups.
Permission |
Description |
|---|---|
Acknowledge Bulletin Board Event |
Ability to acknowledge events on Alarms tab bulletin boards |
Delete Alarms |
Permission to permanently delete alarms |
Permission |
Description |
|---|---|
Alarms Tab |
Access the Alarms tab |
Permission |
Description |
|---|---|
Dashboard Administrator |
Manage all dashboards created by any user |
Permission |
Description |
|---|---|
Create Dashboards |
Create new Dashboards |
Dashboards Tab |
Access the Dashboards tab |
Permission |
Description |
|---|---|
Mapping Groups Configuration |
Define and manage device groups for network mapping |
Mapping Objects Configuration |
Define custom map objects and manage object/group object properties |
Permission |
Description |
|---|---|
Maps Tab |
Access the Maps tab |
Permission |
Description |
|---|---|
Application Groups |
Define custom applications using IP address and port rules |
AS Names Configuration |
View autonomous system (AS) numbers/properties |
Delete Reports |
Ability to delete saved reports regardless of owner |
Host Names Configuration |
Define custom hostname-to-IP mappings and static subnet labels for reporting |
TOS Configuration |
Add custom labels for Type of Service (ToS) and Differentiated Services Code Point (DSCP) values in reports |
Well-known Ports Configuration |
Edit WKP Configuration |
Permission |
Description |
|---|---|
Add/Edit Report Filters |
Permission to update the filters used in Status Tab reports |
Report Designer |
Design custom report type configurations |
Report Folders |
Create and manage folders to organize saved reports |
Save Reports |
Ability to name and save flow reports |
Scheduled Report Administrator |
Set up and manage scheduled email report configurations |
Schedule Emailed Reports |
Schedule a saved report to be emailed on a regular basis |
Permission |
Description |
|---|---|
Run Reports |
Ability to run flow reports |
Status Tab |
Access the Status Tab |
Permission |
Description |
|---|---|
Admin |
Access Scrutinizer’s administrative functions |
Alarm Notifications |
Configure alarm notifications |
Alarm Settings |
Configure global alarm message options and Flow Inactivity and Interface Threshold Violation alarm settings |
ASA ACL Descriptions |
Add/edit ASA firewall credentials for ACL description retrieval |
Authentication Tokens |
Add and manage user authentication tokens |
Authentication Types |
Manage external authentication types |
AWS Configuration |
AWS configuration |
Change User Passwords |
The ability to change the passwords of other users without needing their credentials |
Collectors |
Manage Plixer Scrutinizer collectors and Plixer ML Engines in the environment |
Configure SMTP server settings for email notifications and reports |
Configure the mailserver Scrutinizer will use to send reports and emails |
Create Users |
The ability to create new local Scrutinizer user accounts |
Data History Settings |
Set alarm and flow data history retention durations |
Delete Users |
The ability to delete local Scrutinizer user accounts |
Enable/disable and configure third-party integrations for Explore > Exporters view |
Create, edit, and delete third-party integration links |
Endpoint Analytics |
Configure and enable/disable Plixer Endpoint Analytics integration |
Enforce Session Timeout |
If the system preference for user activity timeout is set, members of user groups with this permission will be timed-out of the UI according to that setting |
Exporters |
Manage and add protocol exclusions to flow-exporting devices in the environment |
Flow Analytics Configuration |
Configure Flow Analytics thresholds and settings |
Flow Analytics Exclusions |
Configure Flow Analytics exclusions |
Flow Analytics Settings |
Configure global settings and enable/disable FlowPro Defender for FA algorithms |
Flow Log Ingestion |
Third-party Flow Log source configuration |
Google Maps Proxy Server Settings |
Configure proxy server settings for Google Maps requests |
Host Indexing |
Host Indexing settings |
Interface Details Configuration |
Edit device interface details |
IP Groups Configuration |
Define rule-based IP range/subnet groups for reporting |
LDAP Server Configuration |
Manage LDAP server configuration used for Scrutinizer authentication |
MAC Addresses Configuration |
Add and manage custom MAC address labels |
Notification Manager |
Create and manage profiles to assign notification actions by alarm policy |
Plixer Network Intelligence |
Add exporters for machine learning monitoring |
Plixer Replicator |
Configure and enable/disable Plixer Replicator integration |
Plixer Security Intelligence |
Configure network for machine learning monitoring |
Policy Manager |
Reconfigure, enable/disable, and assign notification profiles to alarm policies |
Protocol Exclusions |
Define protocol exclusion rules for reporting |
RADIUS Server Configuration |
Manage RADIUS server configuration used for Scrutinizer authentication |
Reporting Configuration |
Customize Plixer Scrutinizer reporting engine functions |
Scrutinizer Audit Report |
View logs of Plixer Scrutinizer user actions |
Scrutinizer Language Configuration |
Create and edit language localization settings |
Scrutinizer Product Licensing |
Add a Plixer Scrutinizer license key and view license details |
Scrutinizer System Preferences |
Configure general Plixer Scrutinizer environment preferences/settings |
ServiceNow |
Configure and manage ServiceNow instances for incident/ticket generation via notifications and collections |
Single Sign-On Configuration |
Add, Delete, and Edit Identity Provider configuration for Scrutinizer’s Single Sign-On Integration |
SNMP Credentials |
Manage SNMP credential sets for polling exporters in the environment |
STIX-TAXII |
Add and manage STIX-TAXII threat intelligence feeds |
Syslog Server Settings |
Syslog server configuration |
TACACS+ Server Configuration |
Manage TACACS+ server configuration used for Scrutinizer authentication |
User Accounts |
Manage user accounts and preferences |
User Groups |
Set up local user groups and manage access to features and resources |
View User Identity Information |
View identity and access information relevant to GDPR restrictions |
Viptela Settings |
Viptela Settings |
Vitals Report |
View the Scrutinizer server vitals reports |