Prerequisites
Before you can use the Security RX capability, you must have the following:
A New Relic account with access to Security RX.
'View' permissions for the 'vulnerabilities' capability.
Vulnerability data through one of these sources:
- An Application instrumented with New Relic's APM agent
- or a host monitored with New Relic's Infrastructure Agent
- or Vulnerability data sent through one of our integrations.
For more information on security RX pricing, see our pricing docs.
Capabilities used by Security RX
- Security - Vulnerabilities capability refers to the ability to view and manage vulnerabilities detected in entities.
- Applied Intelligence - Channels capability is required to create new outbound alerts based on vulnerabilities detected.
- Applied Intelligence - Destinations capability is required to create new outbound alerts based on vulnerabilities detected.
Granting access to Security RX
Review the current custom roles created for your organizations. Add 'read' permissions for the 'vulnerabilities' capability to grant access to view Security RX. Standard roles are automatically granted this capability but custom roles need to have 'read' permissions granted. For more information about custom roles, see user roles.
Removing user access from Security RX
Users with the ability to create/adjust roles within their organization can modify who has access to Security RX feature. You can remove access from Security RX by creating a custom role that does not have 'read' permissions for the 'vulnerabilities' capability. You must then apply this custom role to the users that you wish to restrict.