Security profiles

Security profiles define which networks, log sources, and domains that a user can access.

QRadar® includes one default security profile for administrative users. The Admin security profile includes access to all networks, log sources, and domains.

Before you add user accounts, you must create more security profiles to meet the specific access requirements of your users.


Security profiles must be updated with an associated domain. You must define domains on the Domain Management window before the Domains tab is shown on the Security Profile Management window. Domain-level restrictions are not applied until the security profiles are updated, and the changes are deployed.

Domain assignments take precedence over all settings on the Permission Precedence, Networks, and Log Sources tabs.

If the domain is assigned to a tenant, the tenant name appears in brackets beside the domain name in the Assigned Domains window.