Roles installed with Security Support Common

Security Support Common adds the following roles:
Role title [name] Description Contain roles
field_transform_user Not in use.
  • None
secops_field_mapping_user Not in use.
  • None
Security Support Common Admin

[sn_sec_cmn.admin]

Provides administrative access to shared components of the Security Operations suite. Only users with this role can view and use the Security Operations module.

Users with this role can also add and edit Security Incident workflows and workflow templates.

Users with this role have read-only access to the Domain Separated Properties form.

This role is inherited when you are assigned an administrative role in any of the Security Operations applications.

  • sn_sec_cmn.write
Security Support Common Calculator Read

[sn_sec_cmn.calc_read]

Role for reading security data calculator records.
  • None
Security Support Common Calculator Write

[sn_sec_cmn.calc_write]

Role for writing security data calculator records.
  • sn_sec_cmn.calc_read
Security Support Common Integration Read

[sn_sec_cmn.int_read]

Role for reading security data integration records.
  • None
Security Support Common Integration Write

[sn_sec_cmn.int_write]

Role for writing security data integration records.
  • sn_sec_cmn.int_read
Security Support Common Read

[sn_sec_cmn.read]

Provides read access to shared components of the Security Operations suite.
  • None
Security Support Common Write

[sn_sec_cmn.write]

Provides write access to shared components of the Security Operations suite.
  • sn_sec_cmn.read
Security Support Common WS

[sn_sec_cmn.ws_user]

Provides administrative access to shared web services in the Security Operations suite.
  • None
special access

[sn_si.special_access]

Users without a security role can interact with a security incident. The special access role is used with the Read access and the Privileged access lists.

To interact with a security incident, you must be in the special access role and assigned to one of the special access lists (read or privileged).

Users with special access roles have their own module containing all security incidents assigned to them. No other modules are available to them. No one else can see the Visible to Me module.