roles/chronicle.editor 📋 Copy

Title: Chronicle API Editor

Description: Modify Access to Chronicle API resources.

Stage: GA

221 Assigned Permissions:

• chronicle.ais.createFeedback
• chronicle.ais.translateUdmQuery
• chronicle.ais.translateYlRule
• chronicle.analyticValues.list
• chronicle.analytics.list
• chronicle.bigQueryExport.get
• chronicle.cases.countPriorities
• chronicle.collectors.get
• chronicle.collectors.list
• chronicle.conversations.create
• chronicle.conversations.delete
• chronicle.conversations.get
• chronicle.conversations.list
• chronicle.conversations.update
• chronicle.curatedRuleSetCategories.countAllCuratedRuleSetDetections
• chronicle.curatedRuleSetCategories.get
• chronicle.curatedRuleSetCategories.list
• chronicle.curatedRuleSetDeployments.batchUpdate
• chronicle.curatedRuleSetDeployments.get
• chronicle.curatedRuleSetDeployments.list
• chronicle.curatedRuleSetDeployments.update
• chronicle.curatedRuleSets.countCuratedRuleSetDetections
• chronicle.curatedRuleSets.get
• chronicle.curatedRuleSets.list
• chronicle.curatedRules.get
• chronicle.curatedRules.list
• chronicle.dashboardCharts.get
• chronicle.dashboardCharts.list
• chronicle.dashboardQueries.execute
• chronicle.dashboardQueries.get
• chronicle.dashboardQueries.list
• chronicle.dashboards.copy
• chronicle.dashboards.create
• chronicle.dashboards.delete
• chronicle.dashboards.edit
• chronicle.dashboards.get
• chronicle.dashboards.list
• chronicle.dashboards.schedule
• chronicle.dataAccessScopes.list
• chronicle.dataExports.cancel
• chronicle.dataExports.create
• chronicle.dataExports.fetchLogTypesAvailableForExport
• chronicle.dataExports.get
• chronicle.dataTableOperationErrors.get
• chronicle.dataTableRows.asyncBulkCreate
• chronicle.dataTableRows.asyncBulkReplace
• chronicle.dataTableRows.asyncBulkUpdate
• chronicle.dataTableRows.bulkCreate
• chronicle.dataTableRows.bulkReplace
• chronicle.dataTableRows.bulkUpdate
• chronicle.dataTableRows.create
• chronicle.dataTableRows.delete
• chronicle.dataTableRows.get
• chronicle.dataTableRows.list
• chronicle.dataTableRows.update
• chronicle.dataTables.bulkCreateDataTableAsync
• chronicle.dataTables.create
• chronicle.dataTables.delete
• chronicle.dataTables.get
• chronicle.dataTables.list
• chronicle.dataTables.update
• chronicle.dataTaps.create
• chronicle.dataTaps.delete
• chronicle.dataTaps.get
• chronicle.dataTaps.list
• chronicle.dataTaps.update
• chronicle.enrichmentControls.get
• chronicle.enrichmentControls.list
• chronicle.entities.batchCreate
• chronicle.entities.batchDelete
• chronicle.entities.batchValidate
• chronicle.entities.create
• chronicle.entities.delete
• chronicle.entities.find
• chronicle.entities.findRelatedEntities
• chronicle.entities.get
• chronicle.entities.import
• chronicle.entities.list
• chronicle.entities.modifyEntityRiskScore
• chronicle.entities.queryEntityRiskScoreModifications
• chronicle.entities.searchEntities
• chronicle.entities.summarize
• chronicle.entities.summarizeFromQuery
• chronicle.entityRiskScores.queryEntityRiskScores
• chronicle.errorNotificationConfigs.get
• chronicle.errorNotificationConfigs.list
• chronicle.events.batchGet
• chronicle.events.findUdmFieldValues
• chronicle.events.get
• chronicle.events.import
• chronicle.events.queryProductSourceStats
• chronicle.events.searchRawLogs
• chronicle.events.udmSearch
• chronicle.events.validateQuery
• chronicle.findingsGraphs.exploreNode
• chronicle.findingsGraphs.initializeGraph
• chronicle.findingsRefinementDeployments.get
• chronicle.findingsRefinementDeployments.list
• chronicle.findingsRefinementDeployments.update
• chronicle.findingsRefinements.computeActivity
• chronicle.findingsRefinements.computeAllActivities
• chronicle.findingsRefinements.create
• chronicle.findingsRefinements.get
• chronicle.findingsRefinements.list
• chronicle.findingsRefinements.test
• chronicle.findingsRefinements.update
• chronicle.forwarders.generate
• chronicle.forwarders.get
• chronicle.forwarders.list
• chronicle.globalDataAccessScopes.permit
• chronicle.ingestionLogLabels.get
• chronicle.ingestionLogLabels.list
• chronicle.ingestionLogNamespaces.get
• chronicle.ingestionLogNamespaces.list
• chronicle.instances.generateCollectionAgentAuth
• chronicle.instances.generateSoarAuthJwt
• chronicle.instances.get
• chronicle.instances.logTypeClassifier
• chronicle.instances.report
• chronicle.iocMatches.get
• chronicle.iocMatches.list
• chronicle.iocState.get
• chronicle.iocState.update
• chronicle.iocs.batchGet
• chronicle.iocs.findFirstAndLastSeen
• chronicle.iocs.get
• chronicle.iocs.searchCuratedDetectionsForIoc
• chronicle.legacies.legacyBatchGetCases
• chronicle.legacies.legacyBatchGetCollections
• chronicle.legacies.legacyFetchAlertsView
• chronicle.legacies.legacyFetchUdmSearchCsv
• chronicle.legacies.legacyFetchUdmSearchView
• chronicle.legacies.legacyFindAssetEvents
• chronicle.legacies.legacyFindRawLogs
• chronicle.legacies.legacyFindUdmEvents
• chronicle.legacies.legacyGetAlert
• chronicle.legacies.legacyGetCuratedRulesTrends
• chronicle.legacies.legacyGetDetection
• chronicle.legacies.legacyGetEventForDetection
• chronicle.legacies.legacyGetRuleCounts
• chronicle.legacies.legacyGetRulesTrends
• chronicle.legacies.legacyRunTestRule
• chronicle.legacies.legacySearchArtifactEvents
• chronicle.legacies.legacySearchArtifactIoCDetails
• chronicle.legacies.legacySearchAssetEvents
• chronicle.legacies.legacySearchCuratedDetections
• chronicle.legacies.legacySearchCustomerStats
• chronicle.legacies.legacySearchDetections
• chronicle.legacies.legacySearchDomainsRecentlyRegistered
• chronicle.legacies.legacySearchDomainsTimingStats
• chronicle.legacies.legacySearchEnterpriseWideAlerts
• chronicle.legacies.legacySearchEnterpriseWideIoCs
• chronicle.legacies.legacySearchFindings
• chronicle.legacies.legacySearchIngestionStats
• chronicle.legacies.legacySearchIoCInsights
• chronicle.legacies.legacySearchRawLogs
• chronicle.legacies.legacySearchRuleDetectionCountBuckets
• chronicle.legacies.legacySearchRuleDetectionEvents
• chronicle.legacies.legacySearchRuleResults
• chronicle.legacies.legacySearchRulesAlerts
• chronicle.legacies.legacySearchUserEvents
• chronicle.legacies.legacyStreamDetectionAlerts
• chronicle.legacies.legacyTestRuleStreaming
• chronicle.legacies.legacyUpdateAlert
• chronicle.logTypeSchemas.list
• chronicle.logs.export
• chronicle.logs.get
• chronicle.logs.import
• chronicle.logs.list
• chronicle.messages.create
• chronicle.messages.delete
• chronicle.messages.get
• chronicle.messages.list
• chronicle.messages.update
• chronicle.multitenantDirectories.get
• chronicle.nativeDashboards.create
• chronicle.nativeDashboards.delete
• chronicle.nativeDashboards.duplicate
• chronicle.nativeDashboards.get
• chronicle.nativeDashboards.list
• chronicle.nativeDashboards.update
• chronicle.operations.cancel
• chronicle.operations.delete
• chronicle.operations.get
• chronicle.operations.list
• chronicle.operations.streamSearch
• chronicle.operations.wait
• chronicle.preferenceSets.get
• chronicle.preferenceSets.update
• chronicle.referenceLists.create
• chronicle.referenceLists.get
• chronicle.referenceLists.list
• chronicle.referenceLists.update
• chronicle.referenceLists.verifyReferenceList
• chronicle.retrohunts.create
• chronicle.retrohunts.get
• chronicle.retrohunts.list
• chronicle.riskConfigs.get
• chronicle.riskConfigs.update
• chronicle.ruleDeployments.get
• chronicle.ruleDeployments.list
• chronicle.ruleDeployments.update
• chronicle.ruleExecutionErrors.list
• chronicle.rules.create
• chronicle.rules.get
• chronicle.rules.list
• chronicle.rules.listRevisions
• chronicle.rules.update
• chronicle.rules.verifyRuleText
• chronicle.searchQueries.create
• chronicle.searchQueries.delete
• chronicle.searchQueries.get
• chronicle.searchQueries.list
• chronicle.searchQueries.update
• chronicle.watchlists.create
• chronicle.watchlists.delete
• chronicle.watchlists.get
• chronicle.watchlists.list
• chronicle.watchlists.update
• resourcemanager.projects.get
• resourcemanager.projects.list