.png?width=180&height=32&name=NW%20Logo%20(2).png){kind=small}
ESA Permissions
ESA PermissionsESA Permissions
This topic lists all ESA permissions and shows which permissions are assigned to each pre-configured NetWitness role. User access is restricted based on roles and permissions assigned to roles.
- Administrators
- Operators
- Analyst
- Security Operations Center (SOC) Managers
- Malware Analysts (MA)
- Data Privacy Officer
There are four permissions for ESA:
- Access Alerting Module: Is required for any permission
- View Rules: Allows view-only permission for rules in the Rule Library
- View Alerts: Allows view-only permission for alerts ESA generates
- Manage Rules:Allows you to view, create, edit, and delete rules
The following table lists permissions for ESA and the roles to which they are assigned. Use this table to see how each role can work with rules and alerts.
- Permission: Access Alerting Module
- Administrators: Yes
- Operators: Yes
- Analysts: Yes
- SOC Mgrs: Yes
- MAs:
- DPOs: Yes
- Permission: View Rules
- Administrators: Yes
- Operators: Yes
- Analysts:
- SOC Mgrs: Yes
- MAs:
- DPOs: Yes
- Permission: View Alerts
- Administrators: Yes
- Operators:
- Analysts: Yes
- SOC Mgrs: Yes
- MAs:
- DPOs: Yes
- Permission: Manage Rules
- Administrators: Yes
- Operators: Yes
- Analysts:
- SOC Mgrs: Yes
- MAs:
- DPOs: Yes
For more information on roles and permissions, see the System Security and User Management Guide.