PCM Role-Based Access Control
The Packet Capture Module (PCM
Packet Capture Module. A module that performs operations related to packet capture, allowing you to capture network packets and store them as PCAP files for analysis.) uses Role-Based Access Control (RBAC Role-Based Access Control) to control access to PCM features. PCM roles are assigned through the User Management page and determine what features and content users can access in the PCM Web UI.
Available PCM roles are defined by your system administrator and include the following three roles:
-
PCM Admin: Manages capture profiles
A configuration template that defines packet capture parameters., storage profiles A configuration that defines where the Packet Capture Module stores PCAP files, specifying the storage type and connection details for customer-managed repositories., and global settings. Can view device information and capture job Writes network packets to local disk for continuous or on-demand captures. status, but cannot manage capture jobs or perform harvests The process of retrieving PCAP files from Packet Capture Module devices and transferring them to a customer-provided repository for analysis.. -
PCM Operator: Full access to all PCM features, including managing capture jobs, performing harvests, and configuring profiles and settings.
-
PCM Harvester: Can view device information and capture job status, and can perform harvests. Cannot manage capture jobs, profiles, or settings.
Features Available by Role
PCM uses a granular permission-based system where each role is mapped to specific permissions. These permissions control access to individual features and determine what content is visible in the PCM Web UI. The following table shows feature access for the PCM roles:
|
PCM Feature |
PCM Operator |
PCM Harvester |
PCM Admin |
||
| Capture Features | |||||
|
View device list and search |
✓ |
✓ |
✓ |
||
|
View capture job status |
✓ |
✓ |
✓ |
||
|
View harvest history |
✓ |
✓ |
✓ |
||
|
Create capture jobs |
✓ |
❌ |
❌ |
||
|
Start capture jobs |
✓ |
❌ |
❌ |
||
|
Stop capture jobs |
✓ |
❌ |
❌ |
||
|
Edit/rename capture jobs |
✓ |
❌ |
❌ |
||
|
Delete capture jobs |
✓ |
❌ |
❌ |
||
|
Perform harvests |
✓ |
✓ |
❌ |
||
| Management Features | |||||
|
View capture profiles |
✓ |
❌ |
✓ |
||
|
Create/edit/delete capture profiles |
✓ |
❌ |
✓ |
||
|
View storage profiles |
✓ |
❌ |
✓ |
||
|
Create/edit/delete storage profiles |
✓ |
❌ |
✓ |
||
|
View global settings |
✓ |
❌ |
✓ |
||
|
Configure global settings |
✓ |
❌ |
✓ |
||