roles/chronicle.editor

Title: Chronicle API Editor

Description: Modify Access to Chronicle API resources.

Stage: GA

Role Type: Predefined

262 Assigned Permissions:

🔍

chronicle.ais.createFeedback

chronicle.ais.translateUdmQuery

chronicle.ais.translateYlRule

chronicle.analyticValues.list

chronicle.analytics.list

chronicle.bigQueryExport.get

chronicle.cases.countPriorities

chronicle.collectors.get

chronicle.collectors.list

chronicle.conversations.create

chronicle.conversations.delete

chronicle.conversations.get

chronicle.conversations.list

chronicle.conversations.update

chronicle.curatedRuleSetCategories.countAllCuratedRuleSetDetections

chronicle.curatedRuleSetCategories.get

chronicle.curatedRuleSetCategories.list

chronicle.curatedRuleSetDeployments.batchUpdate

chronicle.curatedRuleSetDeployments.get

chronicle.curatedRuleSetDeployments.list

chronicle.curatedRuleSetDeployments.update

chronicle.curatedRuleSets.countCuratedRuleSetDetections

chronicle.curatedRuleSets.get

chronicle.curatedRuleSets.list

chronicle.curatedRules.get

chronicle.curatedRules.list

chronicle.dashboardCharts.get

chronicle.dashboardCharts.list

chronicle.dashboardQueries.execute

chronicle.dashboardQueries.get

chronicle.dashboardQueries.list

chronicle.dashboards.copy

chronicle.dashboards.create

chronicle.dashboards.delete

chronicle.dashboards.edit

chronicle.dashboards.get

chronicle.dashboards.list

chronicle.dashboards.schedule

chronicle.dataAccessScopes.list

chronicle.dataExports.cancel

chronicle.dataExports.create

chronicle.dataExports.fetchLogTypesAvailableForExport

chronicle.dataExports.fetchServiceAccountForDataExport

chronicle.dataExports.get

chronicle.dataExports.list

chronicle.dataExports.update

chronicle.dataTableOperationErrors.get

chronicle.dataTableRows.asyncBulkCreate

chronicle.dataTableRows.asyncBulkReplace

chronicle.dataTableRows.asyncBulkUpdate

chronicle.dataTableRows.bulkCreate

chronicle.dataTableRows.bulkGet

chronicle.dataTableRows.bulkReplace

chronicle.dataTableRows.bulkUpdate

chronicle.dataTableRows.create

chronicle.dataTableRows.delete

chronicle.dataTableRows.get

chronicle.dataTableRows.list

chronicle.dataTableRows.update

chronicle.dataTables.bulkCreateDataTableAsync

chronicle.dataTables.create

chronicle.dataTables.delete

chronicle.dataTables.get

chronicle.dataTables.list

chronicle.dataTables.update

chronicle.dataTaps.create

chronicle.dataTaps.delete

chronicle.dataTaps.get

chronicle.dataTaps.list

chronicle.dataTaps.update

chronicle.enrichmentCombination.get

chronicle.enrichmentControls.create

chronicle.enrichmentControls.disable

chronicle.enrichmentControls.get

chronicle.enrichmentControls.list

chronicle.entities.batchCreate

chronicle.entities.batchDelete

chronicle.entities.batchValidate

chronicle.entities.create

chronicle.entities.delete

chronicle.entities.find

chronicle.entities.findRelatedEntities

chronicle.entities.get

chronicle.entities.import

chronicle.entities.list

chronicle.entities.modifyEntityRiskScore

chronicle.entities.queryEntityRiskScoreModifications

chronicle.entities.searchEntities

chronicle.entities.summarize

chronicle.entities.summarizeFromQuery

chronicle.entityRiskScores.queryEntityRiskScores

chronicle.errorNotificationConfigs.get

chronicle.errorNotificationConfigs.list

chronicle.events.batchGet

chronicle.events.fetchEnrichedEvent

chronicle.events.findUdmFieldValues

chronicle.events.get

chronicle.events.import

chronicle.events.queryProductSourceStats

chronicle.events.searchRawLogs

chronicle.events.udmSearch

chronicle.events.validateQuery

chronicle.featuredContentNativeDashboards.get

chronicle.featuredContentNativeDashboards.install

chronicle.featuredContentNativeDashboards.list

chronicle.featuredContentRules.list

chronicle.featuredContentSearchQueries.get

chronicle.featuredContentSearchQueries.install

chronicle.featuredContentSearchQueries.list

chronicle.feedPacks.get

chronicle.feedPacks.list

chronicle.findingsGraphs.exploreNode

chronicle.findingsGraphs.initializeGraph

chronicle.findingsRefinementDeployments.get

chronicle.findingsRefinementDeployments.list

chronicle.findingsRefinementDeployments.update

chronicle.findingsRefinements.computeActivity

chronicle.findingsRefinements.computeAllActivities

chronicle.findingsRefinements.create

chronicle.findingsRefinements.get

chronicle.findingsRefinements.list

chronicle.findingsRefinements.test

chronicle.findingsRefinements.update

chronicle.formDynamicParameters.get

chronicle.forwarders.generate

chronicle.forwarders.get

chronicle.forwarders.importStatsEvents

chronicle.forwarders.list

chronicle.globalDataAccessScopes.permit

chronicle.ingestionLogLabels.get

chronicle.ingestionLogLabels.list

chronicle.ingestionLogNamespaces.get

chronicle.ingestionLogNamespaces.list

chronicle.instances.generateCollectionAgentAuth

chronicle.instances.generateSoarAuthJwt

chronicle.instances.get

chronicle.instances.logTypeClassifier

chronicle.instances.report

chronicle.investigationSteps.get

chronicle.investigationSteps.list

chronicle.investigations.fetchAssociated

chronicle.investigations.get

chronicle.investigations.list

chronicle.investigations.trigger

chronicle.iocAssociations.batchGet

chronicle.iocAssociations.fetchRelated

chronicle.iocAssociations.fetchRelatedIocAssociations

chronicle.iocAssociations.fetchRelatedThreatCollections

chronicle.iocAssociations.get

chronicle.iocMatches.get

chronicle.iocMatches.list

chronicle.iocState.get

chronicle.iocState.update

chronicle.iocs.batchGet

chronicle.iocs.fetchRelated

chronicle.iocs.findFirstAndLastSeen

chronicle.iocs.findIocs

chronicle.iocs.get

chronicle.iocs.searchCuratedDetectionsForIoc

chronicle.legacies.legacyBatchGetCases

chronicle.legacies.legacyBatchGetCollections

chronicle.legacies.legacyFetchAlertsView

chronicle.legacies.legacyFetchUdmSearchCsv

chronicle.legacies.legacyFetchUdmSearchView

chronicle.legacies.legacyFindAssetEvents

chronicle.legacies.legacyFindRawLogs

chronicle.legacies.legacyFindUdmEvents

chronicle.legacies.legacyGetAlert

chronicle.legacies.legacyGetCuratedRulesTrends

chronicle.legacies.legacyGetDetection

chronicle.legacies.legacyGetEventForDetection

chronicle.legacies.legacyGetRuleCounts

chronicle.legacies.legacyGetRulesTrends

chronicle.legacies.legacyRunTestRule

chronicle.legacies.legacySearchArtifactEvents

chronicle.legacies.legacySearchArtifactIoCDetails

chronicle.legacies.legacySearchAssetEvents

chronicle.legacies.legacySearchCuratedDetections

chronicle.legacies.legacySearchCustomerStats

chronicle.legacies.legacySearchDetections

chronicle.legacies.legacySearchDomainsRecentlyRegistered

chronicle.legacies.legacySearchDomainsTimingStats

chronicle.legacies.legacySearchEnterpriseWideAlerts

chronicle.legacies.legacySearchEnterpriseWideIoCs

chronicle.legacies.legacySearchFindings

chronicle.legacies.legacySearchIngestionStats

chronicle.legacies.legacySearchIoCInsights

chronicle.legacies.legacySearchRawLogs

chronicle.legacies.legacySearchRuleDetectionCountBuckets

chronicle.legacies.legacySearchRuleDetectionEvents

chronicle.legacies.legacySearchRuleResults

chronicle.legacies.legacySearchRulesAlerts

chronicle.legacies.legacySearchUserEvents

chronicle.legacies.legacyStreamDetectionAlerts

chronicle.legacies.legacyTestRuleStreaming

chronicle.legacies.legacyUpdateAlert

chronicle.logTypeSchemas.list

chronicle.logs.export

chronicle.logs.get

chronicle.logs.import

chronicle.logs.list

chronicle.messages.create

chronicle.messages.delete

chronicle.messages.get

chronicle.messages.list

chronicle.messages.update

chronicle.multitenantDirectories.get

chronicle.nativeDashboards.create

chronicle.nativeDashboards.delete

chronicle.nativeDashboards.duplicate

chronicle.nativeDashboards.get

chronicle.nativeDashboards.list

chronicle.nativeDashboards.update

chronicle.notebooks.get

chronicle.notebooks.list

chronicle.operations.cancel

chronicle.operations.delete

chronicle.operations.get

chronicle.operations.list

chronicle.operations.streamSearch

chronicle.operations.wait

chronicle.preferenceSets.get

chronicle.preferenceSets.update

chronicle.referenceLists.create

chronicle.referenceLists.get

chronicle.referenceLists.list

chronicle.referenceLists.update

chronicle.referenceLists.verifyReferenceList

chronicle.retrohunts.create

chronicle.retrohunts.get

chronicle.retrohunts.list

chronicle.riskConfigs.get

chronicle.riskConfigs.update

chronicle.ruleDeployments.get

chronicle.ruleDeployments.list

chronicle.ruleDeployments.update

chronicle.ruleExecutionErrors.list

chronicle.rules.create

chronicle.rules.get

chronicle.rules.list

chronicle.rules.listRevisions

chronicle.rules.update

chronicle.rules.verifyRuleText

chronicle.searchQueries.create

chronicle.searchQueries.delete

chronicle.searchQueries.get

chronicle.searchQueries.list

chronicle.searchQueries.update

chronicle.threatCollectionFilterSet.get

chronicle.threatCollections.fetchEntityMetadata

chronicle.threatCollections.fetchIocMatchMetadata

chronicle.threatCollections.fetchRelated

chronicle.threatCollections.fetchRuleMetadata

chronicle.threatCollections.get

chronicle.threatCollections.list

chronicle.watchlists.create

chronicle.watchlists.delete

chronicle.watchlists.get

chronicle.watchlists.list

chronicle.watchlists.update

resourcemanager.projects.get

resourcemanager.projects.list

roles/chronicle.editor 📋 Copy

262 Assigned Permissions:

roles/chronicle.editor