Trends requirements

Review the requirements before you install and use Trends.

Tanium dependencies

Component Requirement
Platform 7.3.314.4101 or later
Tanium™ Client 6.0.314.1540 or later recommended
Tanium Content The initial gallery uses sensors that are included in Tanium™ Patch and the Initial Content packs. If this content is not present when you import the gallery, the corresponding sources, boards, panels, and sections are not created.
License Core platform entitlement. Contact your Technical Account Manager (TAM) if Trends does not appear on the Tanium™ Console solutions page.

Tanium™ Module Server

Trends installs and runs as a service on the Module Server. The impact on Module Server sizing is minimal and depends on usage. Consult with your TAM for details.

Host and network security requirements

This section lists requirements Trends may have in addition to those for the basic Tanium core platform components.

Ports

The following ports are required for Trends communication.

Component Port number Direction Service Purpose
Module server 17452 Loopback
node.exe Internal purposes; not externally accessible
Module Server 17462 Loopback postgres.exe Internal purposes; not externally accessible

Security exclusions

If the Module Server is deployed in an environment that has security software to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference.

Table 1:   Trends security exclusions
Target Device Process
Module Server <Tanium Module Server>\services\twsm-v1\twsm.exe
<Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\postgres.exe
<Tanium Module Server>\services\trends\node_modules\@tanium
\postgresql\lib\win32\bin\pg_ctl.exe

User role requirements

The predefined roles are Trends Administrator, Trends Author, Trends Board Author, Trends Board Viewer, and Trends Service Account.

Table 2:   Tanium Trends User Role Permissions
Permission Trends Administrator Trends Author Trends Board Author Trends Source Author1 Trends Board Viewer Trends Service Account

Show Trends2

Access to the Trends workbench (built-in)


3

3

3

3

3

Trends Administrator

Unrestricted access to all Trends content, actions, and workbench.







Trends Board Read (deprecated)

View and list boards, sections, and panels. In Trends 3.0 and later, use the Trends API Board Read, Show Trends, and Trends Data Read permissions instead.


4

3

3



Trends Board Write (deprecated)

Create, edit, delete, and configure boards, sections, and panels. In Trends 3.0 and later, use the Trends API Board Write, Show Trends, and Trends Data Read permissions instead.


4





Trends Data Read5

Run data queries against sources.


4

3

3


3

Trends Publish

Generate and publish reports


4





Trends Source Read (deprecated) 6

View and list sources. In Trends 3.0 and later, use the Trends API Source Read, Show Trends, and Trends Data Read permissions instead.


4

3


3


Trends Source Write (deprecated)6,7

Create, edit, and delete sources. In Trends 3.0 and later, use the Trends API Source Write, Show Trends, and Trends Data Read permissions instead.


4





Trends Export7

Export boards and sources


4





Trends Import7

Import from file or gallery

Does not grant access to create new or custom boards and sources


4





Trends Setting Write

Access to module-level settings for Trends


4





Trends View Recent Results8

View recent saved question results on the panel page


4





Trends API Board Read5

View boards, sections, and panels for specified content sets.


4

3

3


3

Trends API Board Write5

Create, edit, delete, and configure boards, sections, and panels for specified content sets.


4

3

3



Trends API Source Read5

View and list sources for specified content sets.


4

3

3

3


Trends API Source Write5

Create, edit, and delete sources for specified content sets.


4

3


3


Trends Integration Service Account5

Provides access for module service accounts to read and write data, and to define sources and boards.


4





Trends Service Account

Provides access for the Trends service account to read and write data, and to define sources and boards.


4





2

1 The Trends Source Author role is deprecated and not available in Trends 3.0 and later. Users that were created in earlier versions of Trends with the Trends Source Author role will retain the same privileges in Trends 3.0 and later.

2 To install Trends, you must have the reserved role of Administrator.

3 Denotes a provided permission.

4 Permission is implied by Trends Administrator permission.

5 Denotes a permission that determines access to content sets.

6 Module sources require administrator access.

7 Requires content set permissions for the sensors that Trends uses.

8 Requires Read Sensor permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources.

Content sets

In Trends 3.x and later, all boards, sources, and saved questions must be assigned to a content set. The following table shows the predefined content sets. You can create your own content sets in addition to these content sets.

Table 3:   Tanium Trends Content Sets
Content set Description Predefined roles with access
Trends Default content set for Trends boards, sources, and saved questions.
  • Trends Administrator1
  • Trends Author
  • Trends Board Author
  • Trends Board Viewer
  • Trends Service Account2
Trends Unassigned Content Trends boards, sources, and saved questions whose content set is deleted. Read-only.
  • Trends Administrator
  • Trends Service Account
Trends Service Trends internal service content. Read-only.
  • Trends Administrator
  • Trends Service Account

1 Users with the Trends Administrator role can access Trends boards and sources in any content set, but can only access Trends saved questions in the prebuilt content sets (Trends, Trends Service, and Trends Unassigned Content).

2 The Trends Service Account role has Write Saved Question permission and Read Sensor permission on all content sets.

Last updated: 10/15/2019 3:53 PM | Feedback