Creates CNVM permissions page (#6584)

benironside · nastasha-solomon · web-flow · commit 94ed6d1cf71f · 2025-03-13T13:47:57.000-07:00
* Creates CNVM requirements page

* bugfix

* Update docs/cloud-native-security/vuln-management-permissions.asciidoc

Co-authored-by: Nastasha Solomon &lt;79124755+nastasha-solomon@users.noreply.github.com&gt;

---------

Co-authored-by: Nastasha Solomon &lt;79124755+nastasha-solomon@users.noreply.github.com&gt;
diff --git a/docs/cloud-native-security/cloud-native-security-index.asciidoc b/docs/cloud-native-security/cloud-native-security-index.asciidoc
@@ -56,6 +56,7 @@ include::kspm-faq.asciidoc[leveloffset=+2]
 
 include::vuln-management-overview.asciidoc[leveloffset=+1]
 include::vuln-management-get-started.asciidoc[leveloffset=+2]
+include::vuln-management-permissions.asciidoc[leveloffset=+2]
 include::vuln-management-findings.asciidoc[leveloffset=+2]
 include::vuln-management-dashboard.asciidoc[leveloffset=+2]
 include::vuln-management-faq.asciidoc[leveloffset=+2]
diff --git a/docs/cloud-native-security/vuln-management-permissions.asciidoc b/docs/cloud-native-security/vuln-management-permissions.asciidoc
@@ -0,0 +1,60 @@
+[[cnvm-required-permissions]]
+= CNVM privilege requirements
+
+This page lists required privileges for {elastic-sec}'s CNVM features. There are three access levels: read, write, and manage. Each access level and its requirements are described below.
+
+[discrete]
+== Read
+
+Users with these minimum permissions can view data on the **Findings** page.
+
+[discrete]
+=== {es} index privileges
+`Read` privileges for the following {es} indices:
+
+* `logs-cloud_security_posture.vulnerabilities_latest-default`
+* `logs-cloud_security_posture.scores-default`
+
+[discrete]
+=== {kib} privileges
+
+* `Security: Read`
+
+[discrete]
+== Write
+
+Users with these minimum permissions can view data on the **Findings** page and create detection rules from the findings details flyout.
+
+[discrete]
+=== {es} index privileges
+`Read` privileges for the following {es} indices:
+
+* `logs-cloud_security_posture.vulnerabilities_latest-default`
+* `logs-cloud_security_posture.scores-default`
+
+[discrete]
+=== {kib} privileges
+
+* `Security: All`
+
+
+[discrete]
+== Manage
+
+Users with these minimum permissions can view data on the **Findings** page, create detection rules from the findings details flyout, and install, update, or uninstall integrations and assets.
+
+[discrete]
+=== {es} index privileges
+`Read` privileges for the following {es} indices:
+
+* `logs-cloud_security_posture.vulnerabilities_latest-default`
+* `logs-cloud_security_posture.scores-default`
+
+[discrete]
+=== {kib} privileges
+
+* `Security: All`
+* `Spaces: All`
+* `Fleet: All`
+* `Integrations: All`
+
