Documentation forPapertrail

User Roles and Access Levels

Organization Roles define the access users have to the organization’s settings and resources across all SolarWinds Application Management products (AppOptics, Loggly, Papertrail, and Pingdom). Product Roles define the access users have to the individual product's data and settings.

If a user or a group is assigned to multiple roles, they gain access to all features, data, settings, and other rights for all of their assigned roles.

User roles, whether organization or product roles, can be defined on a per-person level in the common settings. If SAML is enabled, user roles can instead be defined based on a user's membership in the organization's identity provider group. See Set up role mapping

Organization roles

Organization Roles define the access users have to the organization’s settings and resources across SolarWinds Application Management products (AppOptics, Loggly, Papertrail, and Pingdom).

  • Member roles have access to viewing the organization’s resources, but cannot modify settings related to the organization.

  • Admin roles can also manage the organization, its users, the products activated, and the organization’s settings.

  • Owner roles can do anything a member or admin can do, but also are allowed to configure Security settings. The organization owner role cannot be defined via role mapping.

Papertrail Product roles and access levels

Papertrail Product Roles define the access users have to Papertrail's data and settings. For details about all other Application Management product roles, see Application Management User Roles. each individual product's data and settings.

Papertrail product roles and access levels

Papertrail product roles define the access granted for Papertrail capabilities (settings and features), as well as log access permission levels. When access is defined in Papertrail settings, the users' product roles are defined by granting access to individual capabilities and permission levels. When defined in common settings, product roles are granted by selecting a product role (which encompasses a combination of capabilities accessible and log access permission levels).

While Papertrail is not part of the Papertrail, all SolarWinds Application Management products share common settings, including user role definitions.

Papertrail capabilities and log access permission levels

Papertrail capabilities include:

  • Manage users and permissions — access to all log data and capabilities, including the ability to manage users and their access to log data, modify account settings, update billing details, and modify subscription settings.

  • When Manage users and permissions is selected, all other capabilities are automatically selected at full permission levels and those other capabilities cannot be modified.

  • Change plans and payment — ability to update billing details, and modify subscription settings

  • Access to logs — ability to access log data.

Log access permissions define users' access level to the logs, which log groups they are permitted to access, and whether they can purge logs. The following log access permissions are available when Access to logs is selected:

  • Access level
    • Full Access — grants access to view logs, modify group details, save searches, and create alerts.
    • Read-only — grants the ability to view logs only.
  • Log groups
    • All groups — grants access to all logs in all log groups.
    • Specific groups — grants access to logs within specific log groups. Selectable log groups are displayed if specific groups is selected.
  • Purge logs — grants access to the ability to purge searchable logs. This option is only available to those with full access to all log groups.

Granting access and roles to Papertrail users

When Papertrail users' access and permission levels are defined in Papertrail Members settings, capabilities and log access permissions are granted separately and log access can be restricted to specific groups. See Papertrail Access Control for more information.

When Papertrail users' access and permission levels are defined in SolarWinds Application Management common settings, capabilities and log access permissions are granted via product roles.

If SAML role mapping is used to assign Product Roles to IdP groups, the Papertrail Members settings will be updated to reflect members' permissions as defined in SAML role mapping and only the definition of the specific log group(s) that members can access can be modified in Papertrail Members settings.