When a user has the 'Power User' role assigned in CAPC, that user is unable to drill down and use the Flow Forensics tab within NFA. This issue applies to NFA 10.0 and above.
The Flow forensics tab can only be used by someone with an administrator role. This is by design. If a power user was able to use the flow forensics tab, it would allow them to see data that is outside of their domain (the flow forensics tab shows all data coming into a harvester regardless of domain/tenant).
A patch has been provided to remedy a graphical issue that allows power users to see the Flow Forensics tab. After the patch is applied, only Administrators can see the tab and it eliminates any confusion.
If you are experiencing this issue, please reach out to Broadcom support for the patch.