Team Members
View Users
Go to Settings > Access Control > Users to display the Users page. The page lists users with access to Lacework.
Use controls to add, enable, or disable individual members. You can also filter, edit, and delete team members. To edit or delete a member, click their options button and select Edit or Delete.
You can perform the following actions with the table:
- Refresh - Refresh the data in the table .
- Download as CSV - Click the Download as CSV icon to download the table in CSV format.
- Select columns - Click the Select columns icon to select which columns to display.
- Search - Click to search the table .
For each user, click the Status toggle to enable or disable their access. Click the options icon to edit or delete a team member.
Add Team Members
Click + Add New to add a user.
For detailed information about adding team members, see Team Members.
Account Roles
Lacework supports the following account roles:
- User
- Administrator
The following tables display privilege differences between users and administrators.
Application Settings
Lacework Functionality | User | Administrator |
---|---|---|
Settings > Notifications > Alert channels | View only | Full access |
Settings > Notifications > Alert rules | View only | Full access |
Settings > Integrations > Cloud accounts | View only | Full access |
Settings > Integrations > Container registries | View only | Full access |
Settings > Configuration > Resource groups | View only | Full access |
Settings > Configuration > API keys | No access | Full access |
Settings > Configuration > Agents | View only | Full access |
Settings > Configuration > Report rules | View only | Full access |
Settings > Configuration > Data export rules | View only | Full access |
Settings > Configuration > General | View only | Full access |
Settings > Usage | Only view functionality is available | Only view functionality is available |
Settings > Usage > Audit Logs | View only | Full access |
Settings > Usage > Team members | View only your profile | Full access |
Settings > Authentication | View only | Full access |
AWS, Azure, and GCP Compliance Recommendations
Lacework Functionality | User | Administrator |
---|---|---|
Select a recommendation with a violation and then select the option to suppress this recommendation for a single resource or for all resources. Remove the suppression after it has been added. For more information, see Suppression in AWS Compliance Reports - Using Suppression. | No access | Full access |
Disable a compliance recommendation entirely by turning it off. Enable a compliance recommendation after it has been turned off. For more information, see Advanced Suppression in AWS Compliance Reports - Using Suppression. | No access | Full access |
Vulnerability Exceptions
Lacework Functionality | User | Administrator |
---|---|---|
Manage vulnerability exceptions | View only | Full access |
Organization Roles
Lacework supports the following organization roles: user and administrator.
Members with the organization user role have view only privileges to all organization-level settings. They also have user role access to all underlying accounts within the organization.
Members with the organization administrator role have full access to all organization-level settings. They also have administrator role access to all underlying accounts within the organization.
Multiple Accounts
Team members can have access to more than one account. To see which accounts a member can access, click the number in the Accounts column.
If you are an organization administrator or user, you may have access to multiple accounts. Click the accounts icon near the bottom left corner and select an account to switch to. The organization dashboard is under the Organization heading. If the account you want to switch to is not listed, click View all.
If you have access to multiple accounts, logging in automatically directs you to the last account you used. If that account is not available, the first account alphabetically is used.
Delete Team Members
- Log in to the Lacework Console as a Lacework organization administrator.
- Go to Settings > Usage > Team members.
- Locate the team member you want to delete, click their options button , and select Delete.
Delete an Organization Administrator
Deleting an organization administrator from your organization is necessary to maintain proper security on the Lacework platform. For example, if a person leaves the organization, keeping their account active is risky from a security perspective. Keeping an organization administrator level account open for a person no longer active with your organization is even riskier.
Deleting a team member who is an organization administrator is a two-step procedure. You must first reassign that team member as an account user. Then, you can delete that team member from the organization.
Reassign the Team Member as an Account User
- Log in to the Lacework Console as a Lacework organization administrator.
- Go to Settings > Usage > Team members.
- Locate the team member you want to delete, click their options button , and select Edit.
- Select No for Will this member be an organization administrator?.
- Select No for Will this member be an organization user?.
- Clear all selections for Select accounts for which this member will be an administrator.
- Select any account for Select accounts for which this member will be a user.
- Click Save.
Delete the Team Member
- On the Team Members page, locate the team member you want to delete.
- Click their options button and select Delete.
- Confirm the deletion.