Skip to main content

Who is this article for?
Find your product plan in the Code42 console on the Account menu.

Incydr Professional and Enterprise
Incydr Basic and Advanced
Other product plans

Incydr Professional and Enterprise, yes.

Incydr Basic and Advanced, yes.

CrashPlan Cloud, no.

Other product plans, no.

CrashPlan for Small Business, no.

This article applies to Code42 cloud environments.

HOME
GETTING STARTED
RELEASE NOTES
FAQs
APIs
SYSTEM STATUS
Code42 Support

Permissions for Incydr

Overview

In Code42, roles are made up of permissions. To use Incydr features, your assigned roles give you permissions to use those features. This article lists the permissions needed to use Incydr features, and the roles that contain those permissions.

For guidance on assigning roles for Incydr, see Roles for Incydr. For complete information on all roles, see Roles reference.

Considerations

  • Assign roles with the necessary permissions so that users have the least level of privilege needed to perform their jobs. After assigning roles, test to confirm that users can perform their required tasks and can access the data they need.
  • The Customer Cloud Admin role should only be assigned to the "super user" administrator who has all possible rights in Code42. We recommend that you instead use the Insider Risk Admin role to provide administrator rights for Incydr.
  • Incydr Basic and Advanced, CrashPlan Cloud, and other plans only: If you have assigned the Security Center User role to administrators or analysts who use Incydr, we recommend reassigning them either the Insider Risk Admin or Insider Risk Analyst role instead, depending on their responsibilities. These roles are designed specifically for users of Incydr and only contain permissions for use with Incydr product plans. The Security Center User role not only contains permissions for users of Incydr, but also for users of the retired Code42 Gold product plan (the securitytools.data_read and securitytools.settings_write permissions).
  • The Departing Employee risk indicator is visible to users that have access to view risk indicators, even if they do not have the detectionlists.departingemployee.read permission.

Permissions needed to use Incydr

The following table shows the permissions needed to use Incydr features, and the roles that have those permissions. To learn how to assign the roles, see Roles for Incydr.

 

 

Insider Risk Admin Insider Risk Analyst Insider Risk Read Only  Security Admini-strator Departing Employee Manager  High Risk Employee Manager  Security Center - Restore 
Alerts

View alert notifications

x

x

x

       

Modify alert notifications

x x          

View alert rules

x x x        

Modify alert rules

x x          
Cases

View cases

x x x        

Modify cases

x x          
Dashboards

View the endpoint dashboard

x x x        

View the Risk Exposure dashboard

x x x        
Data connections

View data connections information

x x x x      

Modify data connections settings

      x      
Data preferences

View data preferences

x x x        

Modify data preferences

x x          
Departing Employees list

View the Departing Employees list

x   x   x    

Modify the Departing Employees list

x       x    

View Departing Employees alert settings

x   x   x    

Modify Departing Employees alert settings

x       x    
High Risk Employees list

View the High Risk Employees list

x   x     x  

Modify the High Risk Employees list

x         x  

View High Risk Employees alert settings

x   x     x  

Modify High Risk Employees alert settings

x         x  
Forensic Search

Download files from the filename shown in Forensic Search

            x

Edit Forensic Search settings

             

Search file event data 

x x x        

View saved searches

x x x        

Modify saved searches 

x x          
Risk settings

View risk settings

x x x        

Modify risk settings

x x          
User profiles

View user profiles

x x x        

Modify user profiles

x x          

View user profile notes

x x x        

Modify user profile notes

x x          

Why can't I see some features in the Code42 console?

In our support articles we present all the product features. However, depending on the roles you are assigned, or the product plan your organization has, you may not see every feature in your Code42 console. 

Role assignments

Sometimes you cannot see features because of the roles you are assigned. Roles are comprised of permissions that give you access rights. Among other things, these permissions give you rights to view elements of the user interface. 

For example, if you have been assigned the Insider Risk Admin role, not only do you have the cases.content.read permission that allows you to view cases, you also have the cases.content.write permission that lets you create cases. Therefore, you can see the Create case button:

Cases appearance with the Insider Risk Admin role

However, if you have been assigned the Insider Risk Read Only role, you do not have the cases.content.write permission. As a result, you do not see the Create case button:

Cases appearance with the Insider Risk Read Only role

See the following articles for more information:

  • For a complete list of all the roles and their permissions, see the Roles reference.
  • To find out the roles you are assigned, go to My Profile described in My Profile reference.

Product plan in use

The main thing that determines what you see in the Code42 console is what product plan your organization has. Different products contain different features.

For example, if you have an Incydr product plan, you may see the following menu bar:
Incydr navigation menu

If you have a CrashPlan product plan, you may see the following menu bar:

CrashPlan navigation menu

See the following articles for more information:

  • Was this article helpful?