Default Role Permissions

LogScale includes a number of standard roles by default. These roles have the following permissions:

Admin Role
- Data read access
- Change connections for a view
- Change default search settings
- Change interactions
- Change permission tokens on repo or view
- Change shared dashboard URLs
- Change view or repo description
- Connect a view
- Change FDR feeds
- Change ingest feeds
- Change ingest tokens
- Change parsers
- Change S3 archiving settings
- Change event forwarding
- Change packages
- Change data deletion permissions
- Change user access
- Create Triggers
- Update Triggers
- Delete Triggers
- Create Actions
- Update Actions
- Delete Actions
- Create dashboards
- Update dashboards
- Delete dashboards
- Create files
- Update files
- Delete files
- Create saved queries
- Update saved queries
- Delete saved queries
- Create scheduled reports
- Update scheduled reports
- Delete scheduled reports
Deleter Role
Member Role
- Data read access
- Create dashboards
- Update dashboards
- Delete dashboards
- Create files
- Update files
- Delete files
- Create saved queries
- Update saved queries
- Delete saved queries
- Change parsers
- Change triggers and actions (deprecated from LogScale version 1.120)
- Create Triggers
- Update Triggers
- Delete Triggers
Reader Role ( This role cannot be edited or deleted.)
- Data read access