Permissions specified at Device level are not known to the UI level in NetWitness

Issue

Permissions specified at Device level are not known to the UI level in RSA Security Analytics 10.3.
- An user account mapping to "sdk.meta" role only, not "sdk.content".
- The user role is configured at device level, for instance Admin \ Concentrator \ Security
- Login with the user account, go to Investigator \ navigate to Concentrator
- Click on the number of session and click on "View details" on event which Administrator already viewed.
- The user can view the event details which should be restricted to view the content of event details.

Cause

As per current design, permissions specified at the device level are not known at UI level.

Resolution

To restrict user to navigate to event details at UI level, remove "Navigate Events Permission".
To do this, go to Admin \ System \ Security \ Role \ select the user and Edit.

Notes

This issue is being tracked in the JIRA ticket SACE-1196.

Internal Comments

UserName:shurtj
8/12/2014 1:47:31 PM - Updated Article
Updated article and made changes to abide by Primus best practices.

Product Details

NetWitness Product Set: NetWitness Platform
NetWitness Product/Service Type: All Nodes
NetWitness Version/Condition: 11.x, 12.x or later
Platform: CentOS/Alma Linux

Approval Reviewer Queue

Technical approval queue