Tanium Console and Interact requirements
Web browser requirements
Use one of the following supported browsers to access the Tanium Console:
- Google Chrome (recent)
- Microsoft Edge (recent)
- Mozilla Firefox (recent)
- Safari (recent)
The Tanium Console is designed for a display resolution of at least 1280 pixels wide and at least 720 pixels high. The Tanium Console might not appear as designed in browser windows smaller than these dimensions.
Tanium dependencies
The Tanium Console and Interact depend on other Tanium Core Platform components.
You can update the Tanium Console and Interact versions independently from the Tanium Core Platform. For details, see Managing Tanium solutions.
Component | Requirement |
---|---|
Tanium Console |
|
Tanium Interact |
|
Tanium content | The Interact module does not include content. However, Interact functionality depends on sensors, saved questions, dashboards, and categories that |
License | The license entitlement for the Tanium Core Platform includes the Tanium Console and Interact. |
Tanium Server computer resource and network requirements
- Tanium Core Platform Deployment Guide for Windows: Requirements
- Tanium Appliance Deployment Guide: Requirements
Endpoints
Supported operating systems
The Tanium Console and Interact support the same operating systems (OSs) for endpoints that the Tanium Client supports:
- Windows
- MacOS
- Linux
- AIX
- Solaris
For details about support for specific OS versions, see Tanium Client User Guide: Host system requirements.
Disk space requirements
On managed endpoints, the Tanium Console and Interact require at least 100 MB of disk space and another 100 MB of cache space for data files. The cache space includes the Tanium Client shard cache and objects such as sensors and logs.
Processor requirements
On managed endpoints, the Tanium Console and Interact require at least 10 MB of RAM and account for less than 0.5% of idle CPU usage.
Host and network security requirements
Host and network security requirements for the Tanium Core Platform apply to the Tanium Console and Interact. For details, see:
- Tanium Core Platform Deployment Reference Guide: Host system security exceptions
- Tanium Core Platform Deployment Reference Guide: Tanium network ports
- Tanium Core Platform Deployment Reference Guide: Internet URLs required
User role requirements
Before using the Tanium Console or Interact to perform tasks, verify that your user account has the necessary roles and permissions, as listed in the following sections. To configure and assign roles, see Managing roles.

The following table summarizes the roles and micro admin permissions that are required to

Tanium has roles and permissions for both the Interact module and the associated Tanium Data Service.
Interact module permissions
The Interact module has the following predefined module roles and associated module permissions.
The following table lists the provided advanced permissions and associated content sets (see the table footnotes) for the Interact module permissions in Table 2.
The following table summarizes the permissions required to perform specific tasks in the Tanium Interact module. The module workbench includes the Interact Overview page and Question Builder page. The
Tanium Data Service permissions
The Tanium Data Service has the following predefined module roles and associated module permissions.
The Tanium Data Service roles also have the following micro admin and advanced permissions:

The following table summarizes the roles and permissions that are required to manage actions. When you configure roles, apply the permissions to the content sets that include the packages associated with the actions. The listed permissions are advanced role permissions except where otherwise noted.

The following table summarizes the roles and permissions that are required to manage content such as sensors, packages, saved questions, and filter groups. The listed permissions are advanced role permissions, except where otherwise noted. You apply the permissions to one or more content sets to manage the content that is assigned to those sets.
Tasks | Tanium Console Administration pages | Roles and permissions |
---|---|---|
Manage sensors | Content > Sensors
Content > Quarantined Sensors |
Read Sensor permission on content sets is required to view the sensors that are assigned to those content sets, or to export those sensors in CSV format. Write Sensor permission is required to create, edit, or delete sensors. Write Global Setting (global admin) permission is required to enable or disable sensor quarantine enforcement. The Administrator reserved role has this permission. Read Sensor or Ask Dynamic Question permission is required to view quarantined sensors. Computer management group assignments determine on which endpoints users can |
Manage packages | Content > Packages | Read Package permission on content sets is required to view the packages that are assigned to those content sets, or to export those packages in CSV format. Write Package permission is required to create, edit, or delete packages. The Administrator and Content Administrator reserved roles have these permissions. Only the Administrator reserved role can import packages or export them in JSON format. The Admin reserved role has these permissions, and can export all packages in CSV format. |
Manage saved questions | Content > Saved Questions | Read Saved Question permission on content sets is required to view the saved questions that are assigned to those content sets, or to export those saved questions in CSV format. Write Saved Question permission is required to create, edit, or delete saved questions. In addition to Write Saved Question, the Write Action and Write Package permissions are required to add associated actions to a new saved question. In addition to these three permissions, a user also requires owner permissions for the question to later edit or delete the associated actions: see the Visibility setting in Saved question settings. Read Sensor content set permissions determine which sensors users can select for questions. The Administrator and Content Administrator reserved roles have these permissions. Only the Administrator reserved role can import saved questions or export them in JSON format. The Admin reserved role has these permissions, and can export all saved questions in CSV format. |
Manage filter groups | Content > Filter Groups | Read Filter Group permission is required to view the Filter Groups page. The permissions required to view the configuration (group membership) of specific filter groups are:
Read Filter Group permission on content sets is also required to export filter groups in CSV format. Write Filter Group and Ask Dynamic Questions permissions are required to create, clone, and edit filter groups. Only Write Filter Group permission is required to delete filter groups. Write Computer Group permission implies the Write Filter Group permission. Read Computer Group permission implies the Read Filter Group permission. The Administrator and Content Administrator reserved roles have these permissions. Only the Administrator reserved role can import filter groups or export them in JSON format. The Admin reserved role has these permissions, and can export all filter groups in CSV format. All roles that have the Ask Dynamic Question permission in Tanium Core Platform 7.3 or earlier will have the Read Filter Group permission on the Default Filter Groups content set after you upgrade to version 7.4 or later. |
Import content files | All Content and Permissions pages
Tanium Solutions page |
Import Signed Content (micro admin) permission is required to import digitally signed content files. The Administrator reserved role has the Import Signed Content permission. |
Question history | Management > Question History | Read Question History (micro admin) permission is required to view and export information in the Question History page. However, a user with only the micro admin permission cannot load a question from the Question History page.
Users who have the |
Manage question and sensor runtime indicator thresholds | Configuration > Common > Sensor Thresholds | Administrator reserved role only |
Manage content sets | Permissions > Content Sets
Permissions > Content Alignment |
|

The following table summarizes the roles and permissions that are required to manage role-based access control (RBAC) configurations. The listed permissions are micro admin role permissions except where otherwise noted.

The following table summarizes the roles and permissions that are required to perform troubleshooting tasks in the Tanium Console. The listed permissions are advanced role permissions except where otherwise noted.
Last updated: 2/11/2021 3:32 PM | Feedback