Permissions Reference

Permissions in Myrmex are organized into four modules, with a total of 81 granular permissions available. These permissions follow a consistent naming convention: <module>.<resource>.<action>.

Core (24 permissions)
Devices (38 permissions)
Chat & Reports (12 permissions)
Billing & BI (27 permissions)

Core module controls platform-level operations, user management, and organizational settings.

Role & Access Management

core.roles.read - View roles
core.roles.create - Create new roles
core.roles.update - Edit existing roles
core.roles.delete - Delete roles
core.roles.assign - Assign roles to users
core.roles.manage_cross_org - Manage roles in sub-organizations
core.asset_groups.read - View asset groups
core.asset_groups.create - Create asset groups
core.asset_groups.update - Edit asset groups
core.asset_groups.delete - Delete asset groups

User Management

core.users.read - View users
core.users.create - Create and invite users
core.users.update - Edit user information
core.users.delete - Delete users

Organization Management

core.orgs.read - View organization details
core.orgs.create - Create sub-organizations (Enterprise only)
core.orgs.update - Update organization settings
core.orgs.transfer_ownership - Transfer organization ownership

Context Management

core.contexts.read - View security contexts
core.contexts.create - Create new contexts
core.contexts.update - Edit contexts
core.contexts.delete - Delete contexts

System-level permissions (core.permissions.*) are restricted to Myrmex platform administrators only.

Devices module controls all security asset operations, including devices, integrations, sites, and accounts.

Device & Integration Operations

devices.read, devices.create, devices.update, devices.delete
devices.authorize, devices.debug, devices.execute, devices.integrate
integrations.read, integrations.create, integrations.update, integrations.delete
integrations.authorize, integrations.execute, integrations.configure

Site & Account Management

sites.read, sites.create, sites.update, sites.delete, sites.authorize
accounts.read, accounts.create, accounts.update, accounts.delete, accounts.authorize, accounts.merge

Group Management

device_groups.* - Create, view, update, delete, and manage device groups.
integration_groups.* - Manage integration groups.
site_groups.* - Manage site groups.
account_groups.* - Manage account groups.

Chat module controls access to AI assistant features, artifacts, and reporting capabilities.

Chat Operations

chat.conversations.create, chat.conversations.read, chat.conversations.delete
chat.messages.send
chat.agent.interact - Direct interaction with AI agents

Artifact Management

artifacts.read, artifacts.download, artifacts.manage_context

Report Operations

reports.read, reports.generate, reports.download, reports.email

Billing module controls financial operations, subscriptions, and business intelligence, including playbooks and security cases.

Subscription & Billing

subscriptions.read, subscriptions.create, subscriptions.update, subscriptions.cancel, subscriptions.manage_seats
tokens.read, tokens.purchase, tokens.manage
billing_events.*, user_billing.*, overdue_management.*

Business Intelligence (BI)

bi.metrics.read, bi.tools.read, bi.sessions.read, bi.logs.read, bi.performance.read
bi.user_dashboard.read, bi.admin.read

Books & Cases

books.playbooks.read, books.playbooks.create, books.playbooks.run
books.runbooks.read, books.runbooks.create, books.runbooks.run
case.open, case.update, case.assign, case.close

Permission Examples

devices.read - View device inventory.
core.users.create - Invite new team members.
integrations.execute - Trigger actions through third-party integrations.
reports.generate - Compile security data into professional reports.

Get Started

Platform

Multi-Agent System

Myrmex Endpoint Agent

Integrations

Management

Policies

Permissions Reference

Role & Access Management

User Management

Organization Management

Context Management

Device & Integration Operations

Site & Account Management

Group Management

Chat Operations

Artifact Management

Report Operations

Subscription & Billing

Business Intelligence (BI)

Books & Cases

Permission Examples

Get Started

Platform

Multi-Agent System

Myrmex Endpoint Agent

Integrations

Management

Policies

​Role & Access Management

​User Management

​Organization Management

​Context Management

​Device & Integration Operations

​Site & Account Management

​Group Management

​Chat Operations

​Artifact Management

​Report Operations

​Subscription & Billing

​Business Intelligence (BI)

​Books & Cases

​Permission Examples

Role & Access Management

User Management

Organization Management

Context Management

Device & Integration Operations

Site & Account Management

Group Management

Chat Operations

Artifact Management

Report Operations

Subscription & Billing

Business Intelligence (BI)

Books & Cases

Permission Examples