XDR Malware scan

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

XDR Malware scan

L3 Networker

Hi All,

 

We have a middle team that manages the end users and we are planning to give them the process of scanning the endpoints however if an end user initiates a scan we are not getting the event on ACTION CENTRE which makes it difficult to track from our end. 

 

If we give them the access to console what is least rights they would require to perform this action.

 

Regards,

Shahwaz

1 REPLY 1

L4 Transporter

Hello @Shahwaz_Md 

 

Thanks for reaching out on LiveCommunity!

You can create a custom role from access management. In which you can choose which ever rights you want to assign to it from "components" section. Only for endpoint scanning right, You need to go to Endpoints -> Endpoints Administration -> Select View/Edit option -> Then simply check the Endpoint scan box as shown in screenshot.

Additionally you can scope these users to specific endpoint group using SBAC.

 

Screenshot 2024-08-16 at 10.29.36 PM.png

 

Please click Accept as Solution to acknowledge that the answer to your question has been provided.

  • 562 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!