Modify User Profile Entities Settings
On the Entities tab, you can select the Entities that contain the Log Source Lists and Log Sources to which you want to grant or deny access for the user profile.
In an "allow" profile, access is granted by default to all Log Source Lists and Log Sources in the Entities and optional child Entities that you select. You can remove access to specific Log Source Lists or Log Sources on the Log Sources Access Rights tab.In a "deny" profile, access is denied access to search data in all Log Source Lists and Log Sources—you do not need to select any Entities to deny access. Log Sources may still be visible for management purposes, such as moving and editing. You do not need to select any Entities to deny access. You only need to select one or more Entities if you want to grant access to specific Log Source Lists or Log Sources on the Log Sources Access Rights tab.
- On the main toolbar, click Deployment Manager.
- On the Tools menu, click Administration, and then click User Profile Manager.
The User Profile Manager window appears and lists the existing User Profiles. - Click an existing user profile to select it, and then click Properties.
Click the Entities tab.
The Global Administrator, Global Analyst, and SOAP API Service Administrator security roles cannot be edited from this tab because these Security Roles have access to all Entities. Select the Grant check box for the Entities containing Log Source Lists or Log Sources to which you want to deny or allow access.To select all Child Entities under a Root Entity, select the Include Child Entities check box. Alternatively, you can select Child Entities individually, as all Root and Child Entities are listed in the grid.
You can allow access to a Child Entity without having to allow access to its parent. This means you can select one or more Child Entities without selecting their Root Entity.The option to include Child Entities is only available for the Restricted Analyst profile. Child Entities cannot be excluded from the Restricted Administrator profile.Click Next to proceed to the Log Sources Access Rights tab, or click OK to save the profile and close the User Profile Properties dialog box.