Release 4.5
February 27, 2025
What's New?
Tag-based User Scoping
The Tag-based User Scoping feature is currently available to limited customers and is in the early preview stage. Access to this feature is provided on request. For more details, contact Qualys Technical support.
Tag-based User Scoping enables you to control access by restricting a user to view and interact with only those assets whose specific tags are assigned to the user. The assets which has no tags are accessible to all users regardless of assigned tags. If an asset has multiple tags, it is accessible to any user with at least one matching tag.
This feature ensures that users has access to only relevant assets, events, profiles, incidents, reports, and other assets based on their assigned tags.
The user with the manager role can assign tags to all other users through the Administration module. By default, the manager user has access to all the assets and tags regardless of any tags that may be applied to those assets.
Benefits
-
Enhances security by ensuring users only access relevant assets.
-
Simplifies user permission management.
-
Reduces clutter by displaying only necessary information to users.
For more information on Tag-based User Scoping, refer to FIM Online Help.
New Token for Events Tab
| Token | Description | Example |
|---|---|---|
| asset.tagNames
(This token displays events created in FIM version 4.5 and later) |
Use this token to find events based on asset tags. | asset.tagNames: cloud agent |
To view the events created in FIM versions earlier than 4.5, use the asset.tag.name token.
API Enhancements
The FIM APIs have been enhanced to support the Tag-based User Scoping feature. For more information, refer to API Release Notes.