Access Control

Available for:

Cloud SIEM | CSM Threats | Application Security Management

Overview

Datadog’s access management system uses role-based access control, enabling you to define the level of access users have to Datadog resources. Users are assigned to roles that define their account permissions, including what data they can read and which account assets they can modify. When permissions are granted to a role, any user who is associated with that role receives those permissions. See the Account Management Access Control documentation for more information.

For Datadog Security products, granular access control is available for detection rules and suppressions, allowing you to restrict access by teams, roles, or service accounts.

Permissions

See the list of permissions for Security products.

Restrict access to detection rules

By default, all users have view and edit access to the detection rules. To use granular access controls to limit the roles that may edit a single rule:

  1. Click the vertical three-dot menu for the rule and select Permissions.
  2. Click Restrict Access. The dialog box updates to show that members of your organization have Viewer access by default. Use that dropdown menu to select one or more roles, teams, or users that may edit the security rule.
  3. Use the dropdown menu to select one or more roles, teams, or users that may edit the security rule.
  4. Click Add.
  5. Click Save.

Note: To maintain your edit access to the rule, Datadog requires you to include at least one role that you are a member of before saving.

To restore access to a rule:

  1. Click the vertical three-dot menu for the rule and select Permissions.
  2. Click Restore Full Access.
  3. Click Save.

Restrict access to suppression rules

By default, all users have view and edit access to suppressions. To use granular access controls to limit the roles that may edit a suppression rule:

  1. Click the vertical three-dot menu for the rule and select Permissions.
  2. Click Restrict Access. The dialog box updates to show that members of your organization have Viewer access by default. Use that dropdown menu to select one or more roles, teams, or users that may edit the suppression rule.
  3. Click Add.
  4. Click Save.

Note: To maintain your edit access to the rule, Datadog requires you to include at least one role that you are a member of before saving.

To restore access to a rule:

  1. Click the vertical three-dot menu for the rule and select Permissions.
  2. Click Restore Full Access.
  3. Click Save.
PREVIEWING: esther/docs-9478-fix-split-after-example