LDAP Permissions
LDAP Permissions include the same permissions as that of the local user group permissions. See the table in the permission Group Permissions section in the User Group Permissions section for viewing the permissions and their detailed descriptions.
MetaDefender NDR requires LDAP servers to send these permissions with the prefixes INQ_PERM_ (for permissions) and INQ_GROUP_ (for groups) for remote authentication. Creating the INQ_GROUP_ Administrators group on the LDAP server would map the LDAP server to the local MetaDefender NDR Manager Administrators group and so the members of that remote LDAP group will have all permissions of the local Administrators group. Custom groups can also be created within the MetaDefender NDR Manager UI (For example: Analysts) that would correspond to INQ_GROUP_ Analysts group on the LDAP server and all members of that remote LDAP group will have all permissions of the local MetaDefender NDR Analysts group.
See the following table for information on LDAP permissions.
LDAP Permission TitleINQ_PERM_ CAN_READ_ANALYSIS Analysis (Read)INQ_PERM_CAN_WRITE_ANALYSIS Analysis (Write)INQ_PERM_CAN_READ_FILTRATION Filtration (Read)INQ_PERM_CAN_WRITE_FILTRATION Filtration (Write)INQ_PERM_CAN_READ_POLICY Policy (Read)INQ_PERM_CAN_WRITE_POLICY Policy (Write)INQ_PERM_CAN_READ_ADMINISTRATION Administration and Authentication (Read)INQ_PERM_CAN_WRITE_ADMINISTRATION Administration and Authentication (Write)INQ_PERM_CAN_READ_HELP HelpINQ_PERM_CAN_READ_HOST_EXCLUSIONS Host Exclusions (Read)INQ_PERM_CAN_WRITE_HOST_EXCLUSIONS Host Exclusions (Write)INQ_PERM_CAN_READ_BLACKLIST Blacklist (Read)INQ_PERM_CAN_WRITE_BLACKLIST Blacklist (Write)INQ_PERM_CAN_READ_WHITELIST Whitelist (Read)INQ_PERM_CAN_WRITE_WHITELIST Whitelist (Write)INQ_PERM_CAN_READ_WHITENOISE Whitenoise (Read)INQ_PERM_CAN_WRITE_WHITENOISE Whitenoise (Write)INQ_PERM_CAN_READ_THREAT Threats (Read)INQ_PERM_CAN_READ_SESSION Sessions (Read)INQ_PERM_CAN_WRITE_SESSION Sessions (Write)INQ_PERM_CAN_PERFORM_MANUAL_SCAN Manual ScanINQ_PERM_CAN_READ_USER Users (Read)INQ_PERM_CAN_WRITE_USER Users (Write)INQ_PERM_CAN_WRITE_AUTHENTICATION_MAPPING Authentication Mappings (Write)INQ_PERM_CAN_WRITE_USER_GROUP User Groups (Write)INQ_PERM_CAN_READ_ADMINISTRATION_INTEGRATION Integration (Read)INQ_PERM_CAN_WRITE_ADMINISTRATION_INTEGRATION Integration (Write)INQ_PERM_CAN_READ_GLOBALS Globals (Read)INQ_PERM_CAN_WRITE_GLOBALS Globals (Write)INQ_PERM_CAN_READ_ADMINISTRATION_COLLECTION Collection (Read)INQ_PERM_CAN_WRITE_ADMINISTRATION_COLLECTION Collection (Write)INQ_PERM_CAN_READ_ANALYSIS_C2 C2 (Read)INQ_PERM_CAN_READ_ADMINISTRATION_C2 C2 (Read)INQ_PERM_CAN_WRITE_ADMINISTRATION_C2 C2 (Write)INQ_PERM_CAN_READ_MIME_EXCEPTION MIME Exceptions (Read)INQ_PERM_CAN_WRITE_MIME_EXCEPTION MIME Exceptions (Write)INQ_PERM_CAN_EXPORT_LOGS Export LogsINQ_PERM_CAN_READ_KB Knowledge Base (Read)INQ_PERM_CAN_READ_SIGNATURE Signatures (Read)INQ_PERM_CAN_READ_POLICIES Policies (Read)INQ_PERM_CAN_READ_AUDIT_LOG Audit Log (Read)INQ_PERM_CAN_READ_SENTRY_LOG Sentry Log (Read)INQ_PERM_CAN_WRITE_MANUAL_UPDATE Manual Update (Write)INQ_PERM_CAN_WRITE_SIGNATURE Signatures (Write)INQ_PERM_CAN_READ_FILE Files (Read)INQ_PERM_CAN_WRITE_POLICIES Policies (Write)INQ_PERM_CAN_WRITE_SUPPORT Support (Write)INQ_PERM_CAN_READ_SUPPORT Support (Read)INQ_PERM_CAN_READ_SERVER_MANAGEMENT Server Management (Read)INQ_PERM_CAN_WRITE_SERVER_MANAGEMENT Server Management (Write)INQ_PERM_CAN_READ_AUTHENTICATION_MAPPING Authentication Mapping (Read)INQ_PERM_CAN_READ_AV_EVENT Malware Events (Read)INQ_PERM_CAN_TRIGGER_SYSTEM_EVENTS Can Trigger System Events (Reboot, Shutdown, etc)