Trends requirements

Review the requirements before you install and use Trends.

Tanium dependencies

In addition to a license for Trends, make sure that your environment meets the following requirements.

Component Requirement
Tanium™ Core Platform 7.3.314.4101 or later
Tanium™ Client 6.0.314.1540 or later recommended
Tanium Content The initial gallery uses sensors that are included in Tanium modules, the Core Content pack, and the Default Content pack. If this content is not present when you import the gallery, the corresponding sources, boards, panels, and sections are not created.
Tanium products

If you selected Install with Recommended Configurations when you installed Trends, the Tanium Server automatically installed all your licensed modules at the same time. Otherwise, you must manually install the modules that Trends requires to function, as described under Tanium Console User Guide: Manage Tanium modules.

The following module is required to create and edit saved question sources:

  • Tanium Interact
License Tanium Core Platform entitlement. Contact your Technical Account Manager (TAM) if Trends does not appear on the Tanium™ Console solutions page.

Tanium™ Module Server

Trends installs and runs as a service on the Module Server. The impact on Module Server sizing is minimal and depends on usage. Consult with your TAM for details.

Endpoints

Trends does not deploy packages to endpoints. For Tanium Client operating system support, see Tanium Client User Guide: Host system requirements.

Host and network security requirements

Specific ports and processes are needed to run Trends.

Ports

The following ports are required for Trends communication.

Source Destination Port Protocol Purpose
Module Server Module Server (loopback) 17452 TCP Internal purposes, not externally accessible
Module Server (loopback) 17462 TCP Internal purposes, not externally accessible

Security exclusions

If security software is in use in the environment to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference. For a list of all security exclusions to define across Tanium, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.

Table 1:   Trends security exclusions
Target Device Notes Process
Module Server   <Tanium Module Server>\services\twsm-v1\twsm.exe
  <Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\postgres.exe
  <Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\pg_ctl.exe

No additional process exclusions are required.

User role requirements

The predefined roles are Trends Author, Trends Board Author, Trends Board Viewer, and Trends Operator, and Trends Service Account.

The predefined roles are Trends Administrator, Trends Author, Trends Board Author, Trends Source Author, Trends Board Viewer, Trends Operator, and Trends Service Account.

Table 2:   Tanium Trends User Role Permissions
Permission Trends Administrator Trends Author Trends Board Author Trends Source Author1 Trends Board Viewer Trends Operator Trends Service Account

Show Trends

Access to the Trends workbench (built-in)
2
2
2
2
2
2

Trends Administrator

Unrestricted access to all Trends content, actions, and workbench






Trends Board Read (deprecated)

View and list boards, sections, and panels

In Trends 3.0 and later, use the Trends API Board Read, Show Trends, and Trends Data Read permissions instead
3
2
2



Trends Board Write (deprecated)

Create, edit, delete, and configure boards, sections, and panels

In Trends 3.0 and later, use the Trends API Board Write, Show Trends, and Trends Data Read permissions instead
3





Trends Data Read4

Run data queries against sources
3
2
2

2

Trends Publish

Generate and publish reports
3





Trends Source Read (deprecated) 5

View and list sources

In Trends 3.0 and later, use the Trends API Source Read, Show Trends, and Trends Data Read permissions instead
3
2

2


Trends Source Write (deprecated)5,6

Create, edit, and delete sources

In Trends 3.0 and later, use the Trends API Source Write, Show Trends, and Trends Data Read permissions instead
3





Trends Export6

Export boards and sources
3





Trends Import6

Import from file or gallery

Does not grant access to create new or custom boards and sources
3





Trends Operator Read Saved Question

View and list boards, sections, and panels in the Trends content sets






Trends Operator Settings Write

Access to some module-level settings for Trends (excludes setting service credentials)






Trends Settings Write

Access to module-level settings for Trends
3





Trends View Recent Results7

View recent saved question results on the panel page
3





Trends API Board Read4

View boards, sections, and panels for specified content sets
3
2
2

2
2

Trends API Board Write4

Create, edit, delete, and configure boards, sections, and panels for specified content sets
3
2
2



Trends API Source Read4

View and list sources for specified content sets
3
2
2
2

2

Trends API Source Write4

Create, edit, and delete sources for specified content sets
3
2

2


Trends Integration Service Account4

Provides access for module service accounts to read and write data, and to define sources and boards
3





Trends Service Account

Provides access for the Trends service account to read and write data, and to define sources and boards
3





1 The Trends Source Author role is deprecated and not available in Trends 3.0 and later. Users that were created in earlier versions of Trends with the Trends Source Author role will retain the same permissions in Trends 3.0 and later.

2 Denotes a provided permission.

3 Permission is implied by Trends Administrator permission.

4 Denotes a permission that determines access to content sets.

5 Module sources require administrator access.

6 Requires content set permissions for the sensors that Trends uses.

7 Requires Read Sensor permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources.
Table 3:   Tanium Trends User Role Permissions
Permission Trends Author Trends Board Author Trends Source Author Trends Board Viewer Trends Operator Trends Service Account

Show Trends

Access to the Trends workbench (built-in)
1
1
1
1
1

Trends API Board Read2

View boards, sections, and panels for specified content sets
1
1

1
1

Trends API Board Write2

Create, edit, delete, and configure boards, sections, and panels for specified content sets
1
1



Trends API Source Read2

View and list sources for specified content sets
1
1
1

1

Trends API Source Write2

Create, edit, and delete sources for specified content sets
1

1


Trends Board Read (deprecated)

View and list boards, sections, and panels

Use the Trends API Board Read, Show Trends, and Trends Data Read permissions instead
1
1



Trends Board Write (deprecated)

Create, edit, delete, and configure boards, sections, and panels

Use the Trends API Board Write, Show Trends, and Trends Data Read permissions instead





Trends Data Read2

Run data queries against sources
1
1

1

Trends Export3

Export boards and sources





Trends Import3

Import from file or gallery

Does not grant access to create new or custom boards and sources





Trends Integration Service Account2

Provides access for module service accounts to read and write data, and to define sources and boards





Trends Operator Read Saved Question

View and list boards, sections, and panels in the Trends content sets





Trends Operator Settings Write

Access to some module-level settings for Trends (excludes setting service credentials)





Trends Publish

Generate and publish reports





Trends Service Account

Provides access for the Trends service account to read and write data, and to define sources and boards





Trends Settings Write

Access to module-level settings for Trends





Trends Source Read (deprecated)

View and list sources

Use the Trends API Source Read, Show Trends, and Trends Data Read permissions instead
1

1


Trends Source Write (deprecated)

Create, edit, and delete sources

Use the Trends API Source Write, Show Trends, and Trends Data Read permissions instead





Trends View Recent Results4

View recent saved question results on the panel page





1 Denotes a provided permission.

2 Denotes a permission that determines access to content sets.

3 Requires content set permissions for the sensors that Trends uses.

4 Requires Read Sensor permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources.

Content sets

In Trends 3.x and later, all boards, sources, and saved questions must be assigned to a content set. The following table shows the predefined content sets. You can create your own content sets in addition to these content sets.

Table 4:   Tanium Trends Content Sets
Content set Description Predefined roles with access
Trends Default content set for Trends boards, sources, and saved questions.
  • Trends Administrator1
  • Trends Author
  • Trends Board Author
  • Trends Board Viewer
  • Trends Operator
  • Trends Service Account2
Trends Unassigned Content Trends boards, sources, and saved questions whose content set is deleted. Read-only.
  • Trends Administrator
  • Trends Operator
  • Trends Service Account
Trends Service Trends internal service content. Read-only.
  • Trends Administrator
  • Trends Operator
  • Trends Service Account

1 Users with the Trends Administrator role can access Trends boards and sources in any content set, but can only access Trends saved questions in the prebuilt content sets (Trends, Trends Service, and Trends Unassigned Content).

2 The Trends Service Account role has Write Saved Question permission and Read Sensor permission on all content sets.