Team: Huntress EDR
Environment: Portal, Dashboard
Summary: How to set Huntress User Roles.
Setting Huntress User Permissions
1Account-level
2Organization-level
For information on adding or managing users, see this article: Managing Huntress Users.
UPDATE: In the past, organization-level admins could not approve Assisted Remediation. Permissions were updated in Q2 2022 based on MSP partner feedback, and now all organization admins can approve Assisted Remediations.
If you have larger customers who need their own reporting integration, but still require your expertise (co-managed IT for example), you can submit the form below to initiate the process to become a Huntress Reseller.
Account-level
NOTE: Account level Admins/Users can access any organizations listed under the account
Admin
Admins have full access to modify everything across Huntress and can view/modify billing information.
User
Users can see most things throughout the Huntress Account and Organizations.
Users can:
- Create/Modify/Delete Organizations
- Download the Huntress installer (and view the account key)
- View the account key
- Approve Assisted Remediation
- Reject Assisted Remediation
- Force a Managed AV update on a single target
Users cannot:
- Modify/add user
- Modify/add integrations
- Bulk remove agents across organizations (but can delete whole organization)
- Do any bulk Managed AV actions such as quick/full scan, update or change audit/enforce mode
- Change Managed AV configuration on either account, org or single machine scope
- Force a Managed AV scan on a single target
- View/change billing information (including invoices and contracts)
- Manage Incident Reports
- Change global preferences such as SAML SSO or manage Host Isolation settings.
- Add/remove exclusions
- Manually isolate hosts
- Manually deisolate hosts
Finance
- Limited to Billing and Invoices areas ONLY
- View Past Invoices
- View breakdown of agents per organization in an invoice
- View payment receipts
- Update Payment Info
- Update Billing Info
Marketing
Marketing users can only access the Partner Enablement Service (PES).
UPDATE: The Finance and Marketing roles are new as of June 2022
Read-Only
Read-only users can see everything as a User can, but cannot modify/delete/add anything across the Huntress Dashboard.
Organization-level
NOTE: Organization-level Admins/Users cannot view or access any other organization
skip to Organization-level Admin
User
Organization-level users can see most things throughout their Huntress Organization.
Org-level Users can:
- View/Download Reports
- View investigations (within their Org(s))
- Uninstall individual Agents
- View Binaries/Autoruns/Collected Files/Canaries/External Recon
- Reject Assisted Remediation
Org-level Users cannot:
- View or access any other organization
- Download the Huntress installer (or view account key)
- Modify/add user
- Modify/add integrations
- Bulk remove agents across organizations
- View/change billing information (including invoices)
- Receive alert emails about new Incident Reports
- Change global preferences
- Change Managed AV configuration on either account, org or single machine scope
- Do any bulk Managed AV actions such as quick/full scan, update or change audit/enforce mode
- Add/remove exclusions
- Manually isolate hosts
- Manually deisolate hosts
- Approve Assisted Remediation
Admin
An Organization-level Admin can do what Org-level users can plus:
- Approve Assisted Remediation
- Add other Organization-level users
- Edit Organization name(s)
- Add/remove exclusions
- Change Managed AV configuration
- Perform bulk Managed AV actions
Read-Only
Read-only users can see everything as a User can, but cannot modify/delete/add anything within the Organization.
UPDATE: In the past, organization-level admins could not approve Assisted Remediation. Permissions were updated in Q2 2022 based on MSP partner feedback, and now all organization admins can approve Assisted Remediations.
Comments
0 comments
Please sign in to leave a comment.