TDR Service Provider Accounts
If you are a WatchGuard Partner, your Threat Detection and Response account is automatically a Service Provider account. As a Service Provider, you create and manage separate TDR accounts for multiple customers. From your Service Provider account, you manage the Threat Detection and Response subscription service for multiple managed customer accounts, and the subordinate Service Provider accounts.
For each managed customer account, a Service Provider can:
- Activate, allocate, and renew Host Sensor licenses
- Monitor deployed Fireboxes and Host Sensors
- Configure Threat Detection and Response policies
- Take threat mediation actions
The actions available to each user in a service provider account are based on the user role, as described in the subsequent section.
Threat Detection and Response is a multi-tenant, multi-tier system. Each Service Provider account can manage many customer accounts. Each managed customer account has a separate UUID that uniquely identifies the account. The Service Provider deploys Host Sensors and Fireboxes, and manages policies, actions, and reports separately for each managed account. Data is not shared between managed accounts.
As a Service Provider, you create accounts for each of your customers in your TDR service provider account.
After you create an managed customer account, you can assign Host Sensors to each account.
Service Provider User Roles
Service Provider accounts have two user roles: Administrator (SP) and Operator (SP). The first user who activates TDR for a Firebox in a WatchGuard Partner Portal account is assigned both user roles. Subsequent users in the same partner account who log in to TDR are assigned the Operator (SP) role.
A user assigned the Administrator (SP) user role in a Service Provider account can create managed customer accounts for the Service Provider account, and can assign Host Sensor licenses to managed customer accounts. A user with the Administrator (SP) user role can also complete the same actions for a managed account as a user with the Administrator role.
- Manage user account roles of other users in the Service Provider account
- Add managed customer accounts
- Assign host sensor licenses to managed accounts
- Configure the global Host Sensor settings in each managed account
- Manage all customer accounts with the same privileges as a user assigned the Administrator role
A user assigned the Operator (SP) role is the Operator for all accounts managed from the Service Provider account. The Operator can manage all managed customer accounts with the same privileges as a user assigned the Operator role.