For details on cookie usage on our site, read our Privacy Policy
Cortex XDR Role to View Access Management
- LIVEcommunity
- Discussions
- Cloud Delivered Security Services
- Endpoint (Traps) Discussions
- Cortex XDR Role to View Access Management
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Printer Friendly Page
Cortex XDR Role to View Access Management
- Mark as New
- Subscribe to RSS Feed
- Permalink
12-07-2022 07:29 PM
Hi All,
Currently my XDR Tenant only have 1 admin (let's called : "myadmin") account that can view Access Management menu under (Gear)>Configuration, the rest of the account cannot. I tried to change my account's role to Admin Account it's same role as "myadmin" but my account cannot view Access Management, do i miss some role specification to have that access management for my account?
Note : and is it possible to have an account that can only manage the user without have role to view or edit Endpoint/Dashboard menu?
Thanks.
- Mark as New
- Subscribe to RSS Feed
- Permalink
12-09-2022 08:36 AM
Hi @Melky
Cortex XDR authentication and authorization is a bit complicated...
1. Customer Support Portal (CSP) is used for authentication. Which means you need to have user in CSP to be allowed to login to XDR.
2. Cortex XDR Gateway is responsible for the authorization. Here admin roles are assigned to the users
When you say you changed your role to Account Admin for your user, where did you do that? Did you do it at the Gateway - https://cortex-gateway.paloaltonetworks.com/
What is the assigned role for your user at the gateway?
Try to ask the Account Admin to assign you with Instance Admin role, sign-out and sign-in back again. Instance Admin should have permission to see access management.
- Mark as New
- Subscribe to RSS Feed
- Permalink
12-09-2022 09:11 AM
Yes i have added the user in CSP member, it reflected on the cortex gateway, now im able to see the access management using instance admin role, but when i tried to clone it and change the Endpoint section to "None" then relogin the access management disappeared, i tried to set Endpoint section to as it is, same result..my guess maybe its because cloned roles (not the original), i need some clarification here if it's true..
Thanks..
- Plz share with me example of Cortex XDR report in Threat & Vulnerability Discussions
- Where are my XDR logs stored? in Endpoint (Traps) Discussions
- Vulnerability CVE 2021-3050 in Threat & Vulnerability Discussions
- Integrated CASB Makes Deployment Easy and Security Consistent in Next-Generation CASB Discussions
Show your appreciation!
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!
