Trends requirements

Review the requirements before you install and use Trends.

Tanium dependencies

In addition to a license for Trends, make sure that your environment meets the following requirements.

Component Requirement
Tanium™ Core Platform 7.3.314.4250 or later
Tanium™ Client 7.2 or later recommended
Tanium Content The initial gallery uses sensors that are included in Tanium modules, the Core Content pack, and the Default Content pack. If this content is not present when you import the gallery, the corresponding sources, boards, panels, and sections are not created.
Tanium products

If you selected Install with Recommended Configurations when you installed Trends, the Tanium Server automatically installed all your licensed modules at the same time. Otherwise, you must manually install the modules that Trends requires to function, as described under Tanium Console User Guide: Manage Tanium modules.

The following module is required to view charts:

  • Tanium Interact 2.4.50 or later
License Tanium Core Platform entitlement. Contact Tanium Support if Trends does not appear on the Tanium™ Console solutions page. For more information, see Contact Tanium Support.

Tanium™ Module Server

Trends installs and runs as a service on the Module Server. The impact on Module Server sizing is minimal and depends on usage. Consult with Tanium Support for details. For more information, see Contact Tanium Support.

Endpoints

Trends does not deploy packages to endpoints. For Tanium Client operating system support, see Tanium Client User Guide: Host system requirements.

Host and network security requirements

Specific ports and processes are needed to run Trends.

Ports

The following ports are required for Trends communication.

Source Destination Port Protocol Purpose
Module Server Module Server (loopback) 17452 TCP Internal purposes, not externally accessible
Module Server (loopback) 17462 TCP Internal purposes, not externally accessible

Configure firewall policies to open ports for Tanium traffic with TCP-based rules instead of application identity-based rules. For example, on a Palo Alto Networks firewall, configure the rules with service objects or service groups instead of application objects or application groups.

Security exclusions

If security software is in use in the environment to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference. For a list of all security exclusions to define across Tanium, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.

Table 1:   Trends security exclusions
Target Device Notes Process
Module Server   <Tanium Module Server>\services\twsm-v1\twsm.exe
  <Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\postgres.exe
  <Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\pg_ctl.exe

No additional process exclusions are required.

User role requirements

The predefined roles are Trends Author, Trends Board Author, Trends Board Viewer, and Trends Operator, and Trends Service Account.

The predefined roles are Trends Administrator, Trends Author, Trends Board Author, Trends Source Author, Trends Board Viewer, Trends Operator, and Trends Service Account.

Table 2:   Tanium Trends User Role Permissions
Permission Trends Administrator Trends Author Trends Board Author Trends Source Author1 Trends Board Viewer Trends Operator Trends Service Account

Show Trends

Access to the Trends workbench (built-in)








Trends API Board Read2

View boards, sections, and panels for specified content sets


3






Trends API Board Write2

Create, edit, delete, and configure boards, sections, and panels for specified content sets


3






Trends API Source Read2

View and list sources for specified content sets


3






Trends API Source Write2

Create, edit, and delete sources for specified content sets


3






Trends Administrator

Unrestricted access to all Trends content, actions, and workbench








Trends Board Read (deprecated)

View and list boards, sections, and panels

In Trends 3.0 and later, use the Trends API Board Read, Show Trends, and Trends Data Read permissions instead


3






Trends Board Write (deprecated)

Create, edit, delete, and configure boards, sections, and panels

In Trends 3.0 and later, use the Trends API Board Write, Show Trends, and Trends Data Read permissions instead


3






Trends Data Read2

Run data queries against sources


3






Trends Export4

Export boards and sources


3






Trends Import4

Import from file or gallery

Does not grant access to create new or custom boards and sources


3






Trends Integration Service Account2

Provides access for module service accounts to read and write data, and to define sources and boards


3






Trends Operator Read Saved Question

View and list boards, sections, and panels in the Trends content sets








Trends Operator Settings Write

Access to some module-level settings for Trends (excludes setting service credentials)








Trends Publish

Generate and publish reports


3






Trends Service Account

Provides access for the Trends service account to read and write data, and to define sources and boards


3






Trends Settings Write

Access to module-level settings for Trends


3






Trends Source Read (deprecated) 5

View and list sources

In Trends 3.0 and later, use the Trends API Source Read, Show Trends, and Trends Data Read permissions instead


3






Trends Source Write (deprecated)4,5

Create, edit, and delete sources

In Trends 3.0 and later, use the Trends API Source Write, Show Trends, and Trends Data Read permissions instead


3






Trends View Recent Results6

View recent saved question results on the panel page


3






1 The Trends Source Author role is deprecated and not available in Trends 3.0 and later. Users that were created in earlier versions of Trends with the Trends Source Author role will retain the same permissions in Trends 3.0 and later.

2 Denotes a permission that determines access to content sets.

3 Permission is implied by Trends Administrator permission.

4 Requires content set permissions for the sensors that Trends uses.

5 Module sources require administrator access.

6 Requires Read Sensor permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources.

Table 3:   Tanium Trends User Role Permissions
Permission Trends Author Trends Board Author Trends Source Author Trends Board Viewer Trends Operator Trends Service Account

Show Trends

Access to the Trends workbench (built-in)







Trends API Board Read1

View boards, sections, and panels for specified content sets







Trends API Board Write1

Create, edit, delete, and configure boards, sections, and panels for specified content sets







Trends API Source Read1

View and list sources for specified content sets







Trends API Source Write1

Create, edit, and delete sources for specified content sets







Trends Board Read (deprecated)

View and list boards, sections, and panels

Use the Trends API Board Read, Show Trends, and Trends Data Read permissions instead







Trends Board Write (deprecated)

Create, edit, delete, and configure boards, sections, and panels

Use the Trends API Board Write, Show Trends, and Trends Data Read permissions instead







Trends Data Read1

Run data queries against sources







Trends Export2

Export boards and sources







Trends Import2

Import from file or gallery

Does not grant access to create new or custom boards and sources







Trends Integration Service Account1

Provides access for module service accounts to read and write data, and to define sources and boards







Trends Operator Read Saved Question

View and list boards, sections, and panels in the Trends content sets







Trends Operator Settings Write

Access to some module-level settings for Trends (excludes setting service credentials)







Trends Publish

Generate and publish reports







Trends Service Account

Provides access for the Trends service account to read and write data, and to define sources and boards







Trends Settings Write

Access to module-level settings for Trends







Trends Source Read (deprecated)

View and list sources

Use the Trends API Source Read, Show Trends, and Trends Data Read permissions instead







Trends Source Write (deprecated)

Create, edit, and delete sources

Use the Trends API Source Write, Show Trends, and Trends Data Read permissions instead







Trends View Recent Results3

View recent saved question results on the panel page







1 Denotes a permission that determines access to content sets.

2 Requires content set permissions for the sensors that Trends uses.

3 Requires Read Sensor permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources.

Content sets

In Trends 3.x and later, all boards, sources, and saved questions must be assigned to a content set. The following table shows the predefined content sets. You can create your own content sets in addition to these content sets.

Table 4:   Tanium Trends Content Sets
Content set Description Predefined roles with access
Trends Default content set for Trends boards, sources, and saved questions.
  • Trends Administrator1
  • Trends Author
  • Trends Board Author
  • Trends Board Viewer
  • Trends Operator
  • Trends Service Account2
Trends Unassigned Content Trends boards, sources, and saved questions whose content set is deleted. Read-only.
  • Trends Administrator
  • Trends Operator
  • Trends Service Account
Trends Service Trends internal service content. Read-only.
  • Trends Administrator
  • Trends Operator
  • Trends Service Account

1 Users with the Trends Administrator role can access Trends boards and sources in any content set, but can only access Trends saved questions in the prebuilt content sets (Trends, Trends Service, and Trends Unassigned Content).

2 The Trends Service Account role has Write Saved Question permission and Read Sensor permission on all content sets.