NetIQ Sentinel: Sentinel User Permissions for Web Interface and REST API procedure usage

A recent investigation into the automation of creating new event source objects within Sentinel via external sources has revealed that the permissions necessary to invoke REST API and access the /SentinelRESTServices/ web interface is tied into the "Manage Correlation Rules/Alerts" permission. Additionally, there is currently no way for an account to be created to invoke the REST API procedures to create new event sources without also having access to the GUI web interface and allowing the account to search for full event data, as well as edit, add and delete correlation rules.

by: Ted E. | over a year ago | Integrations

see also Bug 752023 - make ability to view all event data independant of admin tasks

by: Norbert K. | over a year ago
It looks like this is really a headless permission set. (no gui)

by: Ted E. | over a year ago

Micro Focus Enhancement Requests Portal is moving. We are migrating the IDEAS from this site to the New Idea Exchange on May 6th. For more information on the new Idea Exchange please visit the Community FAQs.

4

Sentinel User Permissions for Web Interface and REST API procedure usage

Comments