This article describes the instructions for setting up mandatory configurations to leverage the full potential of the Resolution Intelligence Cloud at an enterprise level.
This document is intended for users of Domain, Organization, and Tenant.
Do It Yourself (DIY) is an automation method that ensures first-time users can setup the mandatory configurations required to leverage the full capacity of Resolution Intelligence Cloud without the aid of an expert or a support team.
The automation screen appears for first-time users or a new tenant within a hierarchy once they login to Resolution Intelligence Cloud. The configuration steps in the Automation screen vary based on the plan to which you have subscribed, and they disappear once you have completed them. You will be presented with a new set of configurations, and this process continues until you complete all of them.
Required User Permissions
- Global Admin
- Owner
- Configuration Manager
DIY Automation Use cases
Scenario 1: Your enterprise purchased a Resolution Intelligence Cloud plan with a single tenant. You will be presented a DIY automation screen with initial configurations to setup your account.
At Tenant level, the following configurations will be shown on the Automation screen.
- Apply SSO
- Create Users at the tenant level
- Configure Chronicle instance (Use Netenrich License or Bring Your Own Credentials)
- Configure Chronicle data feeds
- Download Chronicle Forwarder
- Configure ITSM/SOAR
- Configure Detection Rules
- Create a Function
- Configure Escalation Policy
- Configure Schedules
- Configure ActOn Policy
- Configure Scoring - Templatisation Rules
- Configure Processing Rules
- Configure Correlation Policy at tenant level
Scenario 2: Your enterprise purchased a Resolution Intelligence Cloud plan with multiple tenants which means that your enterprise acts as an organization here.
At the Organization level, you can configure the following features.
- Create Tenants
- Create Users at Org level
- Configure Chronicle instance (Use Netenrich License or Bring Your Own Credentials)
- Configure ITSM/SOAR
- Configure Detection Rules
- Create a Service
- Configure Escalation Policy
- Configure Schedules
- Configure ActOn Policy
- Configure Scoring - Templatisation Rules
- Configure Processing Rules
- Configure Correlation Policy at Org level
You will need to switch to the specific tenant to view the configuration steps shown on each tenants’ automation screen.
Scenario 3: Your enterprise purchased a Resolution Intelligence Cloud plan with multiple organizations or multiple tenants means your organization acts as a domain here.
At Domain level, you can configure the following features.
- Create Organizations
- Create Tenants
- Create Users at Domain level
- Configure Chronicle instance (Use Netenrich License or Bring Your Own Credentials)
- Configure ITSM/SOAR
- Configure Detection Rules
- Create a Service
- Configure Escalation Policy
- Configure Schedules
- Configure ActOn Policy
- Configure Scoring - Templatisation Rules
- Configure Processing Rules
- Configure Correlation Policy at Domain level
Setup Configurations in DIY Automation
An automation screen with all configuration steps appears at the top navigational bar after you have logged in for the first-time. You can skip or reopen the same by clicking at the top navigational bar. You can move each configuration step by clicking on right or left arrow under each level. The configurations steps vary based on your subscription plan. Initially, you will be required to setup your profile with all details pertaining to your enterprise account.
Automation screen consists of the following configuration steps. Note that these configuration steps vary based on the different hierarchical levels (Domain, Organization or Tenant) that the user is logged in.
The following image shows the different configuration steps that need to be performed at Tenant level.
Hover over each icon and click create or setup to initiate the configuration. For example,
- Click Setup Authentication to configure multiple authentication methods (ADFS, Azure AD, OKTA) and/or
- Click Setup under create ITSM or SOAR integrations as shown in the following image.
If you are wondered how to configure each step shown in the automation screen, then click Know More under each icon. You will be navigated to the relevant article from the support site.
Comments
0 comments
Please sign in to leave a comment.