Current ThreatQ Version Filter
 

Interdependent Permissions

THREATQ REQUIRED PERMISSIONS

Default ThreatQ Role: Administrative or Maintenance
Custom Role - Action Permissions: Administrative Functions - Edit User Management

When you add or remove action permissions that require related permissions, ThreatQ guides you through adding or removing the related permissions.

The following action permissions require you to enable other related action permissions:

Added Permission Additional Required Permission(s) Prompt Window Example
Orchestration

To make full use of TQO, a user’s role must include:

  • All Integrations permissions - Install & Uninstall Integrations, Edit Integration Configurations, Run Operations
  • All Orchestration permissions - Edit Orchestration Workflow, Run Manual Workflows
  • Artifact Management - Create, Edit, Delete permissions for Data Collections.
  • Administrative Functions - View Audit Log
 N/A
Edit Scoring
  • Manage Object Sub-Types
  • Create, Edit, Delete Sources
  • Create, Edit, Delete Attributes
  • Create, Edit, Delete Relationships
 Prompt - Edit Scoring
Edit TLP
  • Create, Edit, Delete Sources
 Prompt - Edit TLP
Perform Bulk Changes The role must have permissions for at least one of the following:
  • Create, Edit, Delete Attributes
  • Create, Edit, Delete Sources
  • Create, Edit, Delete Tags
  • Create, Edit, Delete Relationships
  • Edit, Delete Status - Also requires Create, Edit, Delete Objects permission
  • Edit, Delete Expiration Date - Also requires Create, Edit, Delete Objects permission

Click the Select All option to select all of the above permissions.

 Prompt - Perform Bulk Changes
Perform Bulk Manual Import
  • Create, Edit, Delete Objects
  • Create, Edit, Delete Attributes
  • Create, Edit, Delete Relationships
 Prompt - Perform Bulk Import
Edit Notification Settings
  • Edit System Configurations
  • Edit Integration Configurations
 Prompt - Edit Notification Settings
Add to Watchlist
  • View Audit Log
 Prompt - Edit Watchlist

Removing the following permissions will disable related permissions:

Removed Permission Disabled Permission(s) Prompt Window Example
Create, Edit, Delete Objects
  • Expiration Date
  • Point of Contact
  • Status
  • Perform Bulk Manual Import
Create, Edit, Delete Sources
  • Edit Scoring
  • Edit TLP
  • Perform Bulk Changes
 Prompt - Sources
You change any of the following to View Only:
  • Create, Edit, Delete Attributes
  • Create, Edit, Delete Relationships
  • Manage Object Sub-Types
  • Edit Scoring
 Prompt - View Only Attributes
Only one of the following is currently enabled and you change it to View Only:
  • Create, Edit, Delete Attributes
  • Create, Edit, Delete Sources
  • Create, Edit, Delete Tags
  • Create, Edit, Delete Relationships
  • Edit, Delete Status
  • Edit, Delete Expiration Date
  • Perform Bulk Changes
 Prompt - Bulk Changes
Edit Integration Configurations
  • Edit Notification Settings
 Prompt - Integrations
Edit System Configurations
  • Edit Notification Settings
 Prompt - Config
View Audit Log
  • Add to Watchlist
 Prompt - Audit Log