User Role Permissions Not Working
search cancel

User Role Permissions Not Working

book

Article ID: 435855

calendar_today

Updated On:

Products

Data Loss Prevention Data Loss Prevention API Detection Data Loss Prevention API Detection for Developer Apps Virtual Appliance Data Loss Prevention Cloud Detection Service Data Loss Prevention Cloud Detection Service for API Detection Data Loss Prevention Cloud Detection Service for Endpoint Data Loss Prevention Cloud Detection Service for ICAP Data Loss Prevention Cloud Detection Service for REST Data Loss Prevention Cloud Package Data Loss Prevention Cloud Prevent for Microsoft Office 365 Data Loss Prevention Cloud Service for Discovery/Connector Data Loss Prevention Cloud Service for Email Data Loss Prevention Cloud Storage Data Loss Prevention Core API Detection Data Loss Prevention Core Package Data Loss Prevention Data Access Governance Data Loss Prevention Discover Suite Data Loss Prevention Endpoint Discover Data Loss Prevention Endpoint Prevent Data Loss Prevention Enforce Data Loss Prevention Enterprise Suite Data Loss Prevention for Mobile Data Loss Prevention Form Recognition Data Loss Prevention Network Discover Data Loss Prevention Network Monitor Data Loss Prevention Network Monitor and Prevent for Email Data Loss Prevention Network Monitor and Prevent for Email and Web Data Loss Prevention Network Monitor and Prevent for Web Data Loss Prevention Network Prevent for Email Data Loss Prevention Network Prevent for Email Virtual Appliance Data Loss Prevention Network Prevent for Web Virtual Appliance Data Loss Prevention Network Protect Data Loss Prevention Oracle Standard Edition 2 Data Loss Prevention Plus Suite Data Loss Prevention Sensitive Image Recognition

Issue/Introduction

We are trying to create user role to view and edit agent, server events. Based upon the below documentation we need to provide edit access for "Agent Management" under "Server Management" tab.

https://techdocs.broadcom.com/us/en/symantec-security-software/information-security/data-loss-prevention/25-1/managing-the-enforce-server/managing-roles-and-users/configuring-roles.html

Currently adding "Agent Management" is not granting access to "Agent" or "Server and Detector" events

Environment

DLP 25.1

Cause

Requires Code update, concern is resolved in DLP 26.1

Resolution

Until you are able to upgrade to DLP 26.1 the following workaround can resolve the concern on DLP 25.1

On the Enforce Server:

  1. Navigate to \Program Files\Symantec\DataLossPrevention\EnforceServer\25.1.00000\Protect\config
  2. Open Enforce.properties
  3. Add the following line to the end of the file:

    com.vontu.manager.enable.legacy.agentevent.report=true

  4. Save your change.
  5. Restart services on the Enforce Server
  6. Log into the Enforce Console as a user that only has 'edit access for agent management' rights (No Incident view). Navigate to System > Agents Events. The page should load successfully.
Powered by Wolken Software