Enhancing access management (Analyzer)

In a

The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

, a Security user can configure security features for services and account policies.

To configure the following security features for services, point to Administration > Security settings and click Services:

The Security user can enable or disable the following security features on the Analyzer's Administration > Security settings > Services page:

The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

  • Configuration API access — When configuration API access is enabled, you can configure the Watchpoints and custom fields via the Configuration API in addition to the web interface.

    The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

  • The storage of raw site traffic data — When the data storage is enabled, the system stores data about individual hits, pages and sessions to support drilling down and export functionality in the Session Browser. 

    Note

    Enabling or disabling session data storage does not impact other features, such as reports, Watchpoint streaming, and bulk data export.

    Tip

    Disabling this feature might increase the system performance.

    Warning

    Disabling this feature prevents any further data from reaching the Session Browser and renders the data storage configuration irrelevant.

  • Launching URLs in a browser window from the Session browser — When the URL launch feature is enabled, users can launch URLs from monitored traffic displayed in the web interface of the system.

    The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

  • Bulk data export — When bulk data export is enabled, external applications can use the system as a source for data mining, warehousing, and other integrations (via HTTPS interfaces).
  • Watchpoint streaming — When enabled, external applications can tap directly into the system data-processing engine to receive real-time data feeds.

  • Nonsecure data transfer — By default, URL-based data exports (whether for export APIs or for Watchpoint streaming) use a secure connection (HTTPS). When nonsecure data transfer is enabled, you can specify that the actual data delivery might use a nonsecure connection (HTTP) to achieve faster transfer rates with minimal impact on the system. 

    Note

    A request for nonsecure delivery is still required to perform authentication using a secure connection. The nonsecure data transfer flag is limited to allowing the actual delivery to be nonsecure.

The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

  • Entitlement groups — Entitlement groups give groups of users access to data from some Watchpoints but not others. When enabled, Observers who are associated with a particular Entitlement group only have access to data from Watchpoints also associated with that Entitlement group.

    The macro unmigrated-inline-wiki-markup from Confluence is no longer available.

Related topics

Enhancing-access-management-Collector
Configuring-access-policies-Console

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*