Settings
The Settings section allows administrators to configure teams, members, integrations, policies, scanning behavior, and other organizational settings that control how ShadowMap operates for your organization.
Modules
| Module | Description |
|---|---|
| Teams | Create and manage teams for organizing staff and routing findings for investigation |
| Members | Manage user accounts, roles, 2FA, SSO, and permissions |
| Integrations | Connect ShadowMap to third-party tools (Slack, Jira, Splunk, PagerDuty, webhooks, etc.) |
| Cloud Sources | Import assets from AWS, Azure, and Cloudflare for comprehensive asset inventory |
| SLA Policies | Define response time targets by severity level for SLA violation tracking |
| Tags & Rules | Configure auto-tagging rules to categorize findings based on filter criteria |
| Vulnerability Scan | Create scan profiles to control which assets are scanned, scan actions, and rate limits |
| Audit Logs | View a detailed audit trail of all user actions within your organization |
Access Control
TIP
Most settings pages are restricted to users with Admin or Manager roles. Analyst users do not have access to organizational settings.
| Setting | Admin | Manager | Analyst |
|---|---|---|---|
| Teams | Full access | View and join | View and join |
| Members | Full access (invite, remove, role change) | View only | No access |
| Integrations | Full access | View only | No access |
| Cloud Sources | Full access | View only | No access |
| SLA Policies | Full access | View only | No access |
| Tags & Rules | Full access | View only | No access |
| Vulnerability Scan | Full access | View only | No access |
| Audit Logs | Full access | View only | No access |
Getting Started
If you are setting up ShadowMap for the first time, configure settings in this order:
- Members -- Invite your team members and assign roles
- Teams -- Create teams to organize your staff by function or region
- Cloud Sources -- Connect cloud providers to import assets automatically
- Integrations -- Connect to your existing tools (ticketing, chat, SIEM)
- SLA Policies -- Define response time expectations
- Tags & Rules -- Set up auto-tagging for findings categorization
- Vulnerability Scan -- Configure scan profiles for your infrastructure