|Applies To||RSA Product Set: Security Analytics|
RSA Product/Service Type: Incident Management, Security Analytics UI
RSA Version/Condition: 10.5.0.0
O/S Version: EL6
|Issue||The SOC_Managers role has been inadvertently granted permission to 'Delete alerts and incidents' in Security Analytics 10.5.0.0. |
The SOC_Managers role should NOT have this permission.
|Resolution||This issue has been permanently resolved in Security Analytics 10.5.0.1.|
|Workaround||Administrators can remove the 'Delete alerts and incidents' permission from the SOC_Managers role on the Administration -> Security page.|