Configuring Criticality

When you import Criticality with automatic configuration, the following default settings are configured:

The following default settings are configured:

Setting Default value
Endpoint rules
  • Domain Controllers
  • Servers
  • Workstations
Group rules Default Critical Active Directory Groups

Configure user and group synchronization settings

  1. From the Main menu, go to Modules > Criticality to open the Criticality Overview page.
  2. Click Settings and open the User/Group Settings tab.
  3. Select the schedule type:
    • Basic: Select the schedule, options, and time zone.
    • Cron: Select the time zone and enter a cron expression of five values representing minutes, hours, day of the month, month, and day of the week. For example, enter 0 2 * * 1,2,3,4,5 to set the schedule to run at 02:00 AM only on Monday, Tuesday, Wednesday, Thursday, and Friday.
  4. Review the Summary and then click Submit.
To ensure that Criticality synchronizations are complete before Impact starts to sync, configure Criticality synchronizations as follows:
  • Start at least one hour before Impact synchronizations start.
  • Choose the same frequency or sync more frequently than Impact.

Configure connections to domains

To configure connections to the Active Directory domains that you want to analyze with Criticality, see Tanium Directory Query User Guide: Add a domain.

After you save the domain connection, data collection and analysis begins automatically at the next scheduled synchronization. For more information, see Collect and analyze data.

Collect and analyze data

For endpoints, data is automatically synchronized every hour. To view the last time that data was collected and analyzed , and the next scheduled collection and analysis , go to the Endpoint Schedule tab in Criticality Settings .

For users and groups, data is automatically synchronized according to the schedule in User/Group Settings. To view the last time that data was collected and analyzed , and the next scheduled collection and analysis , go to the User/Group Schedule tab in Criticality Settings . To initiate data collection and analysis for users and groups manually, click Start Sync.

Data collection and analysis is a long-running process. Do not initiate this process frequently. If a request is already in progress, the requested operation does not run.

Set up Criticality users

You can use the following set of predefined user roles to set up Criticality users.

To review specific permissions for each role, see User role requirements.

On installation, Criticality creates a Criticality user to automatically manage the Criticality service account. Do not edit or delete the Criticality user.

For more information about assigning user roles, see Tanium Core Platform User Guide: Manage role assignments for a user.

Criticality Administrator

Assign the Criticality Operator role to users who manage the Criticality service.
This role can perform the following tasks:

  • View the Criticality workbench.
  • View and download Criticality data.
  • Upload Criticality data.
  • Download the Criticality support bundle.

Criticality Operator

Assign the Criticality Operator role to users who manage the Criticality service.
This role can perform the following tasks:

  • View the Criticality workbench.
  • View and download Criticality data.
  • Upload Criticality data.

Criticality User

Assign the Criticality User role to users who view Criticality data.
This role can view the Criticality workbench.

Do not assign the Criticality Service Account role to users. This role is for internal purposes only.