Host GS: Aggregation Role

Document created by RSA Information Design and Development Employee on Mar 21, 2017
Version 1Show Document
  • View in full screen mode

This topic describes the Aggregation role and permissions that allow service users to perform aggregation.

The Aggregation role is a service user role intended only for aggregation of data. It has the minimum role permissions required to do aggregation:

  • aggregate
  • sdk.meta
  • sdk.packets
  • sdk.content

The Aggregation role is available only on Security Analytics 10.5 and later services and it can be used for an aggregation account. Members of this role or service users with these permissions can perform aggregation on Decoders, Concentrators, Archivers, and Brokers. The aggregate permission allows service users to perform aggregation of sessions and metadata along with raw packets and logs.

You can still use the decoder.manage, concentrator.manage, and archiver.manage permissions, but the Aggregation role permissions allow aggregation only and prevent the other available operations. 

You access the service roles from the Administration > Services (select a service) > Actions > View > Security > Roles tab.

Procedures related to roles are described in Service Procedures. Service User Roles and Permissions provides detailed information on the pre-configured roles.

The following figure shows the permissions in the Aggregation role.


Next Topic:Settings Tab
You are here
Table of Contents > References > Services Security View > Aggregation Role