Skip to main content

User Permissions

Cameron Granger
  • Updated

Setting Huntress User Permissions

1Account-level user

2Organization-level user

For information on adding or managing users, see this article: Managing Huntress Users.


Account-level users

Admin

Admins have full access to modify everything across Huntress and can view/modify billing information. 

User

Users can see most things throughout the Huntress Account and Organizations. 

Users can

  • Create/Modify/Delete Organizations
  • Download the Huntress installer (and view the account key) 
  • View the account key
  • Reject Assisted Remediation
  • Force a Managed AV update on a single target

Users cannot:

  • Approve Assisted Remediation
  • Modify/add user 
  • Modify/add integrations
  • Bulk remove agents across organizations (but can delete whole organization)
  • Do any bulk Managed AV actions such as quick/full scan, update or change audit/enforce mode
  • Force a Managed AV scan on a single target
  • View/change billing information (including invoices and contracts) 
  • Manage Incident Reports
  • Change global preferences such as SAML SSO or manage Host Isolation settings.
  • Manually isolate hosts
  • Manually deisolate hosts

Read-Only

Read-only users can see everything as a User can, but cannot modify/delete/add anything across the Huntress Dashboard.  

Organization-level users

User

Users can see most things throughout the Huntress Account and Organizations.

Org-level Users can

  • View/Download Reports
  • View investigations (within their Org(s))
  • Uninstall individual Agents
  • View Binaries/Autoruns/Collected Files/Canaries/External Recon

Org-level Users cannot:

  • Approve Assisted Remediation
  • Download the Huntress installer (or view account key)
  • Modify/add user 
  • Modify/add integrations
  • Bulk remove agents across organizations
  • View/change billing information (including invoices) 
  • Receive alert emails about new Incident Reports 
  • Change global preferences
  • Manually isolate hosts
  • Manually deisolate hosts

Admin

An Organization-level Admin can do what Org-level users can plus: 

  • Add other Organization-level users
  • Edit Organization name(s)

Read-Only

Read-only users can see everything as a User can, but cannot modify/delete/add anything within the Organization.

 

 

 

Comments

0 comments

Please sign in to leave a comment.

Related articles