Roles Management

Roles and permissions control the levels of access to different features in BigPanda.

BigPanda provides two built-in roles: Admin and User. These roles are configurable to define the level of access granted to your organization's BigPanda users. A user may have one or more roles, and each role may have one or more permissions associated with it. The same role can be duplicated and assigned to multiple users.

Role-Based Access Control (RBAC) in BigPanda allows you to dictate the level of a user's access to resources and is customizable by resource and role.

The two permission types provided by BigPanda are:

  • Read-only - the user can only view the resource, they cannot interact with or edit it in any way.
  • Full Access - the user has the ability to perform actions related to the resource (ie: Create, Read, Edit, Delete, etc.).
    For more information about User Roles in BigPanda, see the Roles and Resource Permissions guide.
Settings Dropdown > Role ManagementSettings Dropdown > Role Management

Settings Dropdown > Role Management

Key Features

  • Create and customize roles to restrict the availability of your organization's sensitive content, making it accessible on a per-user basis.
  • Control the degree to which resources are available to select users within your organization.
  • Protect your organization's resources by enforcing the Principle of Least Privilege. Give users the lowest level of access required to perform their role, limiting the scope of any damage caused by issues with one resource.
  • The separation of duties provided by Role-Based Access Control localizes areas of access, providing very clear parameters for each user's responsibilities.

Relevant Permissions

Only users with Full access can grant role permissions for a newly created resource. Add Permissions_Full_Access for access to these permissions.

Role NameDescription
Roles_ReadRead-only - View the Role Management section.
Roles_Full_AccessFull access - View, add, edit and delete BigPanda Roles.

Create a New Role

  1. In the top right, click the Settings cog icon, and then click Roles Management.
  2. Click New Role.
  1. Name the new role.
  2. (Optional) Add Users, Permissions, and Environment Access to the role, as described below.
FieldDescription
Role NameEnter a unique role name.
Users(Optional) Select the users to which this role will be added.
Permissions(Optional) Add permissions to resources (other than environments).
Permissions are divided into Read access (ie: Dashboards_Read) and Full access (ie: Dashboards_Full_Access).
Environment AccessAdd permissions to environments.

There are three global Environments permissions:
Environments_Full_Access - full access to environment configuration and incident action for all environments.
Environments_Incident_Actions - Access to all environments and the ability to perform incident actions (except for environment configuration).
Environments_Read_Only - Read only access to all environments and incident actions.

BigPanda also offers Granular Environment Permissions, allowing admins to assign access on a per-environment basis. To assign access to a specific environment, add the name of the environment to the permission you wish to assign (ie: _Read).
  1. Click Create Role.

Edit a Role

  1. In the top right, click the Settings cogwheel icon, and then click Roles Management.
  2. Select a role and click Edit Role.
  1. Edit the role's details and click Edit Role.

Duplicate a Role

  1. In the top right, click the Settings cogwheel icon, and then click Roles Management.
  2. Select a role and click Duplicate Role.
  1. (Optional) Name the duplicated role and edit its Users, Permissions, and Environment Access to your new specifications.
  2. Click Duplicate Role.

Delete a Role

  1. In the top right, click the Settings cog icon, and then click Roles Management.
  2. Click Delete Role.

Roles and Resource Permissions

BigPanda Role Based Access Control (RBAC) allows you to create custom roles that have granular access to sections and actions within BigPanda.

BigPanda Resource Permissions

Build roles within your organization using the permissions specific to each individual BigPanda resource.

BigPanda Featureresource_typeAccess levels
AnalyticsanalyticsRead - View BigPanda Analytics
API KeysapikeysRead - View the existing API Keys in the BigPanda Settings.

Full_Access - View existing API keys and name, assign and describe new API keys in BigPanda Settings.
Audit Log API

Use the Audit Log
audit_logsRead - View the Audit Log in the UI and the Audit Log API.
ChangeschangesRead - View the Changes section in the incident details.

Full_Access - View and mark changes as Suspect or Match.
Correlation PatternscorrelationsRead - View existing correlation patterns in the BigPanda Settings.

Full_Access - Preview and create new correlation patterns in the BigPanda Settings.
Custom Tagscustom_tagsRead - View existing custom tags in the BigPanda Settings.

Full_Access - Preview and create new and inactive Extraction and Composition tags in the BigPanda Settings.
DashboardsdashboardsRead - View BigPanda Dashboards.

Full_Access - View, customize, and interact with BigPanda Dashboards.
Enrichments APIenrichments
enrichments-jobs
Read - View the Enrichments API.

Full_Access - Use the Enrichments API to view and define mapping enrichments.
Manage Incident Enrichmentincident-tags-definitionsRead - View the Incident Enrichment section of the BigPanda Settings.

Full_Access - View, create, and edit incident tags in the Incident Tags section of the BigPanda Settings.
IntegrationsintegrationsRead - View BigPanda Integrations in the BigPanda Integrations tab.

Full_Access - View, install, uninstall and/or work with integrations in the BigPanda Integrations tab.
AutoSharenotificationsRead - View existing Autosharing settings in the BigPanda Settings.

Full_Access - View, add, edit, and delete Autosharing settings in the BigPanda Settings.
Maintenance Plans V1 API

Maintenance Plans V2 API

Manage Planned Maintenance
plansRead - View the Maintenance Plans section and the Plans V1 API and Maintenance Plans V2 API.

Full_Access - View and interact with the Maintenance Plans section and use the Plans V1 API, and the Maintenance Plans V2 API to configure maintenance plans. Use the Schedules API to define the specific start and end times of Plans configured with the Plans V1 API.
Sharing QuotasquotasRead - View existing rate limitations in the BigPanda Settings.

Full_Access - View and edit rate limitations in the BigPanda Settings.
Roles ManagementrolesRead - View the Role Management section.

Full_Access - View, add, edit, and delete BigPanda Roles.
Schedules APIschedulesRead - View the Schedules API.

Full_Access - Use the Schedules API to define the specific start and end times of Plans configured with the Plans V1 API.
Unified SearchsearchRead - Read access to BigPanda Unified search.
Single Sign-OnssoRead - View the Single Sign-on section in BigPanda Settings.

Full_Access - View, select, add, configure, validate, and integrate a Single Sign-on provider in BigPanda Settings.
TopologytopologyRead - View the Topology section in the incident details.

Full_Access - Access and configure the Topology graph via the Topology UI API.
UsersusersRead - View the list of Users in BigPanda Settings.

Full_Access - View, add, edit, and delete Users in BigPanda Settings.
User Managementusers/managementRead - View the User Management screen.

Full_Access - View, add, edit and delete BigPanda Users. Requires Users_Full_Access.
User Rolesusers/rolesRead - View the User Roles screen.

Full_Access - View, add, edit, and delete BigPanda User Roles.

Granular Environment Permissions

BigPanda RBAC provides roles and permissions to control and manage access to different resources in BigPanda.
Granular RBAC applies exclusively to BigPanda Environments, defining permissions at the single environment level.
To set and assign Granular permissions, start with the name of the environment to which privileges will be assigned, followed by _Read and _Incident_Actions, ie: YourEnvironment_Read

🚧

Users must have access to at least one environment, either read-only or with actions, in order to be able to use BigPanda.

Environments Resource_type Details

PermissionDescription
environments Full_AccessRead, edit and delete actions for all environments.
Full access to all enrichment tags and incident actions (ie: assign, snooze, share, comment) in all environments.
environments Incident_ActionsFull access to all enrichment tags and incident actions (ie: assign, snooze, share, comment) minus environment configuration in all environments.
environments ReadRead-only access to all enrichment tags and incident actions (ie: assign, snooze, share, comment) in all environments without the ability to change or submit any new incident action.
<ENV_NAME>_Incident_ActionsGranular - Full access to all enrichment tags and incident actions (ie: assign, snooze, share, comment) minus environment configuration in the specified environment(s).
<ENV_NAME>_ReadGranular - Read-only access to all enrichment tags and incident actions (ie: assign, snooze, share, comment) in the specified environment(s) without the ability to change or submit any new incident action.

📘

Replace <ENV_NAME> with the relevant environment name.

Next Steps

Learn about User Management in BigPanda

Learn about Managing your personal account

Find your way around the BigPanda Settings page