roles/chronicle.editor
Title: Chronicle API Editor
Description: Modify Access to Chronicle API resources.
Stage: GA
219 Assigned Permissions:
- chronicle.ais.createFeedback
- chronicle.ais.translateUdmQuery
- chronicle.ais.translateYlRule
- chronicle.analyticValues.list
- chronicle.analytics.list
- chronicle.cases.countPriorities
- chronicle.collectors.get
- chronicle.collectors.list
- chronicle.conversations.create
- chronicle.conversations.delete
- chronicle.conversations.get
- chronicle.conversations.list
- chronicle.conversations.update
- chronicle.curatedRuleSetCategories.countAllCuratedRuleSetDetections
- chronicle.curatedRuleSetCategories.get
- chronicle.curatedRuleSetCategories.list
- chronicle.curatedRuleSetDeployments.batchUpdate
- chronicle.curatedRuleSetDeployments.get
- chronicle.curatedRuleSetDeployments.list
- chronicle.curatedRuleSetDeployments.update
- chronicle.curatedRuleSets.countCuratedRuleSetDetections
- chronicle.curatedRuleSets.get
- chronicle.curatedRuleSets.list
- chronicle.curatedRules.get
- chronicle.curatedRules.list
- chronicle.dashboardCharts.get
- chronicle.dashboardCharts.list
- chronicle.dashboardQueries.execute
- chronicle.dashboardQueries.get
- chronicle.dashboardQueries.list
- chronicle.dashboards.copy
- chronicle.dashboards.create
- chronicle.dashboards.delete
- chronicle.dashboards.edit
- chronicle.dashboards.get
- chronicle.dashboards.list
- chronicle.dashboards.schedule
- chronicle.dataAccessScopes.list
- chronicle.dataExports.cancel
- chronicle.dataExports.create
- chronicle.dataExports.fetchLogTypesAvailableForExport
- chronicle.dataExports.get
- chronicle.dataTableOperationErrors.get
- chronicle.dataTableRows.asyncBulkCreate
- chronicle.dataTableRows.asyncBulkReplace
- chronicle.dataTableRows.asyncBulkUpdate
- chronicle.dataTableRows.bulkCreate
- chronicle.dataTableRows.bulkReplace
- chronicle.dataTableRows.bulkUpdate
- chronicle.dataTableRows.create
- chronicle.dataTableRows.delete
- chronicle.dataTableRows.get
- chronicle.dataTableRows.list
- chronicle.dataTableRows.update
- chronicle.dataTables.bulkCreateDataTableAsync
- chronicle.dataTables.create
- chronicle.dataTables.delete
- chronicle.dataTables.get
- chronicle.dataTables.list
- chronicle.dataTables.update
- chronicle.dataTaps.create
- chronicle.dataTaps.delete
- chronicle.dataTaps.get
- chronicle.dataTaps.list
- chronicle.dataTaps.update
- chronicle.enrichmentControls.get
- chronicle.enrichmentControls.list
- chronicle.entities.batchCreate
- chronicle.entities.batchDelete
- chronicle.entities.batchValidate
- chronicle.entities.create
- chronicle.entities.delete
- chronicle.entities.find
- chronicle.entities.findRelatedEntities
- chronicle.entities.get
- chronicle.entities.import
- chronicle.entities.list
- chronicle.entities.modifyEntityRiskScore
- chronicle.entities.queryEntityRiskScoreModifications
- chronicle.entities.searchEntities
- chronicle.entities.summarize
- chronicle.entities.summarizeFromQuery
- chronicle.entityRiskScores.queryEntityRiskScores
- chronicle.errorNotificationConfigs.get
- chronicle.errorNotificationConfigs.list
- chronicle.events.batchGet
- chronicle.events.findUdmFieldValues
- chronicle.events.get
- chronicle.events.import
- chronicle.events.queryProductSourceStats
- chronicle.events.searchRawLogs
- chronicle.events.udmSearch
- chronicle.events.validateQuery
- chronicle.findingsGraphs.exploreNode
- chronicle.findingsGraphs.initializeGraph
- chronicle.findingsRefinementDeployments.get
- chronicle.findingsRefinementDeployments.list
- chronicle.findingsRefinementDeployments.update
- chronicle.findingsRefinements.computeActivity
- chronicle.findingsRefinements.computeAllActivities
- chronicle.findingsRefinements.create
- chronicle.findingsRefinements.get
- chronicle.findingsRefinements.list
- chronicle.findingsRefinements.test
- chronicle.findingsRefinements.update
- chronicle.forwarders.generate
- chronicle.forwarders.get
- chronicle.forwarders.list
- chronicle.globalDataAccessScopes.permit
- chronicle.ingestionLogLabels.get
- chronicle.ingestionLogLabels.list
- chronicle.ingestionLogNamespaces.get
- chronicle.ingestionLogNamespaces.list
- chronicle.instances.generateCollectionAgentAuth
- chronicle.instances.generateSoarAuthJwt
- chronicle.instances.get
- chronicle.instances.logTypeClassifier
- chronicle.instances.report
- chronicle.iocMatches.get
- chronicle.iocMatches.list
- chronicle.iocState.get
- chronicle.iocState.update
- chronicle.iocs.batchGet
- chronicle.iocs.findFirstAndLastSeen
- chronicle.iocs.get
- chronicle.iocs.searchCuratedDetectionsForIoc
- chronicle.legacies.legacyBatchGetCases
- chronicle.legacies.legacyFetchAlertsView
- chronicle.legacies.legacyFetchUdmSearchCsv
- chronicle.legacies.legacyFetchUdmSearchView
- chronicle.legacies.legacyFindAssetEvents
- chronicle.legacies.legacyFindRawLogs
- chronicle.legacies.legacyFindUdmEvents
- chronicle.legacies.legacyGetAlert
- chronicle.legacies.legacyGetCuratedRulesTrends
- chronicle.legacies.legacyGetDetection
- chronicle.legacies.legacyGetEventForDetection
- chronicle.legacies.legacyGetRuleCounts
- chronicle.legacies.legacyGetRulesTrends
- chronicle.legacies.legacyRunTestRule
- chronicle.legacies.legacySearchArtifactEvents
- chronicle.legacies.legacySearchArtifactIoCDetails
- chronicle.legacies.legacySearchAssetEvents
- chronicle.legacies.legacySearchCuratedDetections
- chronicle.legacies.legacySearchCustomerStats
- chronicle.legacies.legacySearchDetections
- chronicle.legacies.legacySearchDomainsRecentlyRegistered
- chronicle.legacies.legacySearchDomainsTimingStats
- chronicle.legacies.legacySearchEnterpriseWideAlerts
- chronicle.legacies.legacySearchEnterpriseWideIoCs
- chronicle.legacies.legacySearchFindings
- chronicle.legacies.legacySearchIngestionStats
- chronicle.legacies.legacySearchIoCInsights
- chronicle.legacies.legacySearchRawLogs
- chronicle.legacies.legacySearchRuleDetectionCountBuckets
- chronicle.legacies.legacySearchRuleDetectionEvents
- chronicle.legacies.legacySearchRuleResults
- chronicle.legacies.legacySearchRulesAlerts
- chronicle.legacies.legacySearchUserEvents
- chronicle.legacies.legacyStreamDetectionAlerts
- chronicle.legacies.legacyTestRuleStreaming
- chronicle.legacies.legacyUpdateAlert
- chronicle.logTypeSchemas.list
- chronicle.logs.export
- chronicle.logs.get
- chronicle.logs.import
- chronicle.logs.list
- chronicle.messages.create
- chronicle.messages.delete
- chronicle.messages.get
- chronicle.messages.list
- chronicle.messages.update
- chronicle.multitenantDirectories.get
- chronicle.nativeDashboards.create
- chronicle.nativeDashboards.delete
- chronicle.nativeDashboards.duplicate
- chronicle.nativeDashboards.get
- chronicle.nativeDashboards.list
- chronicle.nativeDashboards.update
- chronicle.operations.cancel
- chronicle.operations.delete
- chronicle.operations.get
- chronicle.operations.list
- chronicle.operations.streamSearch
- chronicle.operations.wait
- chronicle.preferenceSets.get
- chronicle.preferenceSets.update
- chronicle.referenceLists.create
- chronicle.referenceLists.get
- chronicle.referenceLists.list
- chronicle.referenceLists.update
- chronicle.referenceLists.verifyReferenceList
- chronicle.retrohunts.create
- chronicle.retrohunts.get
- chronicle.retrohunts.list
- chronicle.riskConfigs.get
- chronicle.riskConfigs.update
- chronicle.ruleDeployments.get
- chronicle.ruleDeployments.list
- chronicle.ruleDeployments.update
- chronicle.ruleExecutionErrors.list
- chronicle.rules.create
- chronicle.rules.get
- chronicle.rules.list
- chronicle.rules.listRevisions
- chronicle.rules.update
- chronicle.rules.verifyRuleText
- chronicle.searchQueries.create
- chronicle.searchQueries.delete
- chronicle.searchQueries.get
- chronicle.searchQueries.list
- chronicle.searchQueries.update
- chronicle.watchlists.create
- chronicle.watchlists.delete
- chronicle.watchlists.get
- chronicle.watchlists.list
- chronicle.watchlists.update
- resourcemanager.projects.get
- resourcemanager.projects.list