Trends requirements
Review the requirements before you install and use Trends.
Tanium dependencies
Make sure that your environment meets the following requirements.
| Component | Requirement |
|---|---|
| Tanium™ Core Platform | 7.3.314.4250 or later |
| Tanium content | The initial gallery uses sensors that are included in Tanium solutions, the Core Content pack, and the Default Content pack. If this content is not present when you import the gallery, the corresponding sources, boards, panels, and sections are not created. |
| Tanium solutions |
If you selected Tanium Recommended Installation when you installed Trends, the Tanium Server automatically installed all your licensed solutions at the same time. Otherwise, you must manually install the solutions that Trends requires to function, as described in Tanium Console User Guide: Manage Tanium solutions. The following solution is required to view charts:
|
| License | Tanium Core Platform entitlement. Contact Tanium Support if Trends does not appear on the Tanium™ Console Solutions page. For more information, see Contact Tanium Support. |
Tanium™ Module Server
Trends installs and runs as a service on the Module Server. The impact on Module Server sizing is minimal and depends on usage. Consult with Tanium Support for details.
Endpoints
Trends does not deploy packages to endpoints. For Tanium Client operating system support, see Tanium Client Management User Guide: Client version and host system requirements.
Host and network security requirements
Specific ports and processes are needed to run Trends.
Ports
The following ports are required for Trends communication.
| Source | Destination | Port | Protocol | Purpose |
|---|---|---|---|---|
| Module Server | Module Server (loopback) | 17452 | TCP | Internal purposes, not externally accessible |
| Module Server (loopback) | 17462 | TCP | Internal purposes, not externally accessible |
Configure firewall policies to open ports for Tanium traffic with TCP-based rules instead of application identity-based rules. For example, on a Palo Alto Networks firewall, configure the rules with service objects or service groups instead of application objects or application groups.
Security exclusions
If security software is in use in the environment to monitor and block unknown host system processes, Tanium recommends that a security administrator create exclusions to allow the Tanium processes to run without interference. The configuration of these exclusions varies depending on AV software. For a list of all security exclusions to define across Tanium, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.
| Target Device | Notes | Exclusion Type | Exclusion |
|---|---|---|---|
| Module Server | Process | <Module Server>\services\twsm-v1\twsm.exe | |
| Process | <Module Server>\services\trends\node_modules\@tanium \postgresql\lib\win32\bin\postgres.exe |
||
| Process | <Module Server>\services\trends\node_modules\@tanium \postgresql\lib\win32\bin\pg_ctl.exe |
No additional process exclusions are required.
User role requirements
The following tables list the role permissions required to use Trends. To review a summary of the predefined roles, see Set up Trends users.
| Permission | Trends Administrator1 | Trends Author1 | Trends Board Author | Trends Board Viewer | Trends Operator1 | Trends Service Account1 |
|---|---|---|---|---|---|---|
|
Trends2 SHOW: Access to the Trends workbench. EXPORT: Export boards and sources. IMPORT: Import from file or gallery. Does not grant access to create new or custom boards and sources. PUBLISH: Generate and publish reports. |
SHOW |
SHOW EXPORT IMPORT PUBLISH |
SHOW PUBLISH |
SHOW |
SHOW EXPORT IMPORT PUBLISH |
IMPORT |
|
Trends Administrator Unrestricted access to all Trends content, actions, and workbench |
ADMINISTER |
|
|
|
|
|
|
Trends API Board3 View, create, edit, or delete boards, sections, and panels for specified content sets |
|
READ WRITE |
READ WRITE |
READ |
READ WRITE |
READ WRITE |
|
Trends API Source3 View, create, edit, or delete sources for specified content sets |
|
READ WRITE |
READ |
|
READ WRITE |
READ WRITE |
|
Trends Board (deprecated) View, create, edit, or delete boards, sections, and panels In Trends 3.0 and later, use the Trends API Board, Trends show, and Trends Data permissions instead |
|
READ WRITE |
READ WRITE |
READ |
|
|
|
Trends Data3 Run data queries against sources |
|
READ |
READ |
READ |
READ |
READ |
|
Trends Integration Service Account3 Provides access for module service accounts to read and write data, and to define sources and boards |
|
|
|
|
|
EXECUTE |
|
Trends Operator Read Saved View and list boards, sections, and panels in the Trends content sets |
|
|
|
|
QUESTION |
|
|
Trends Operator Settings Access to some module-level settings for Trends (excludes setting service credentials) |
|
|
|
|
WRITE |
|
|
Trends Service Account Provides access for the Trends service account to read and write data, and to define sources and boards |
|
|
|
|
|
EXECUTE |
|
Trends Settings Access to module-level settings for Trends |
|
|
|
|
|
|
|
Trends Source (deprecated) 2,4 View, create, edit, or delete sources In Trends 3.0 and later, use the Trends API Source, Trends show, and Trends Data permissions instead |
|
READ WRITE |
READ |
|
|
|
|
Trends View Recent5 View recent saved question results on the panel page |
|
RESULTS |
RESULTS |
RESULTS |
RESULTS |
|
|
1 This role provides module permissions for Tanium Interact. You can view which Interact permissions are granted to this role in the Tanium Console. For more information, see Tanium Interact User Guide: User role requirements. 2 Requires content set permissions for the sensors that Trends uses. 3 Denotes a permission that determines access to content sets. 4 Module sources require administrator access. 5 Requires Sensor read permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources. |
||||||
| Permission | Trends Author1 | Trends Board Author | Trends Board Viewer | Trends Operator1 |
|---|---|---|---|---|
|
Trends2 SHOW: Access to the Trends workbench. EXPORT: Export boards and sources. IMPORT: Import from file or gallery. Does not grant access to create new or custom boards and sources. PUBLISH: Generate and publish reports. |
SHOW EXPORT IMPORT PUBLISH |
SHOW PUBLISH |
SHOW |
SHOW EXPORT IMPORT PUBLISH |
|
Trends API Board 3 READ: View boards, sections, and panels for specified content sets WRITE: Create, edit, delete, and configure boards, sections, and panels for specified content sets |
READ WRITE |
READ WRITE |
READ |
READ WRITE |
|
Trends API Source3 READ: View and list sources for specified content sets WRITE: Create, edit, and delete sources for specified content sets |
READ WRITE |
READ |
|
READ WRITE |
|
Trends Board (deprecated) View, create, edit, or delete boards, sections, and panels Use the Trends API Board, Trends show, and Trends Data permissions instead. |
READ WRITE |
READ WRITE |
READ |
|
|
Trends Data3 Run data queries against sources |
READ |
READ |
READ |
READ |
|
Trends Operator Read Saved View and list boards, sections, and panels in the Trends content sets |
|
|
|
QUESTION |
|
Trends Operator Settings Access to some module-level settings for Trends (excludes setting service credentials) |
|
|
|
WRITE |
|
Trends Source (deprecated)2,4 View, create, edit, or delete sources Use the Trends API Source, Trends show, and Trends Data permissions instead. |
READ WRITE |
READ |
|
|
|
Trends View Recent 5 View recent saved question results on the panel page |
RESULTS |
RESULTS |
RESULTS |
RESULTS |
|
1 This role provides module permissions for Tanium Interact. You can view which Interact permissions are granted to this role in the Tanium Console. For more information, see Tanium Interact User Guide: User role requirements. 2 Requires content set permissions for the sensors that Trends uses. 3 Denotes a permission that determines access to content sets. 4 Module sources require administrator access. 5 Requires Sensor read permission for the content set that contains the sensor used by a source. To view recent results for all sources, you need access to all content sets that contain sensors used by sources. |
||||
Content sets
| Content set | Description | Predefined roles with access |
|---|---|---|
| Trends | Default content set for Trends boards, sources, and saved questions. |
|
| Trends Unassigned Content | Trends boards, sources, and saved questions whose content set is deleted. Read-only. |
|
| Trends Service | Trends internal service content. Read-only. |
|
|
1 Users with the Trends Administrator role can access Trends boards and sources in any content set, but can only access Trends saved questions in the prebuilt content sets (Trends, Trends Service, and Trends Unassigned Content). 2 The Trends Service Account role has Saved Question write permission and Sensor read permission on all content sets. |
||
Last updated: 1/7/2022 9:25 AM | Feedback