Jul 20 2021 05:56 AM
Hi guys,
I need to create a solution that allows a few consultants to query login events on servers without giving them access to all of our SIEM data.
I have created a workbook with the parameter: serverName and the simple query:
Jul 20 2021 08:21 AM
@Lassekatten One thing I can think of is to use a Watchlist that maps the users to what server(s) they can select. You can then write a query for the server parameter that would show which server(s) they could select.
It appears that if the users do NOT have the Monitor Contributor role they will not be able to edit a workbook, only use it.