Network Configuration permissions

Abstract

Configure Network Configuration permissions (under Inventory).

Network Configuration (InventoryAssetsNetwork Configuration) enables administrators to define and manage the organization's network topology, such as internal and external IP address ranges, internal domain suffixes, and trusted networks.

Notice

External IP address ranges: Requires an ASM or Cortex XSIAM Premium license.

Trusted Networks: Requires a Cloud Posture Security or Cortex XSIAM Premium license.

Network topology configuration is frequently shared between the Security and IT Infrastructure teams. Ensure proper coordination before altering IP ranges or trusted network definitions.

For more information, see Network Configuration.

The Network Configuration permission controls the ability to view, create, and edit network topologies, IP ranges, and trusted domains.

Permissions

Description

Roles Example

None

No access to the Network Configuration menu, IP ranges, internal domains, or trusted networks.

SOC Tier-1 Analyst: Does not need access to network configuration.

View

Read-only access to view defined IP ranges, internal domains, and trusted networks.

SOC Tier-2 and 3 Analysts, and Threat Hunters: Do not need access to network configuration.

View/Edit

Full access to add, edit, and delete IP address ranges, internal domains, and trusted network configurations.

Security Engineer: Responsible for maintaining network configuration.