get_role
Get detailed permissions for a role by its ID to audit security, compare roles, or enforce least privilege.
Instructions
Get detailed information about a specific role by its ID in LogicMonitor (LM) monitoring.
Returns: Complete role details: name, description, custom flag, detailed permission matrix (view/manage/delete/acknowledge for each area: resources/devices, alerts, dashboards, reports, settings, users).
When to use:
Review exact permissions before assigning role
Compare roles to choose correct one
Document security policies
Audit what a role can/cannot do
Before creating custom role (use as template)
Permission granularity returned:
Resources: Can view/add/modify/delete resource/device
Alerts: Can view/acknowledge/manage alert rules
Dashboards: Can view/create/edit/delete dashboards
Reports: Can view/create/schedule reports
Settings: Can modify datasources/collectors/integrations
Users: Can manage other users/roles
Use cases:
Security audit: "Can this role delete production resources/devices?"
Least privilege: Choose role with minimal required permissions
Documentation: Export role permissions for compliance
Role comparison: Compare multiple roles to find right fit
Workflow: Use "list_roles" to find roleId, then use this tool to review detailed permissions before assigning to users.
Related tools: "list_roles" (find roles), "list_users" (see who has this role), "create_role" (create custom role).
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| roleId | Yes | The ID of the role to retrieve | |
| fields | No | Comma-separated list of fields to include in response. Examples: "id,displayName,hostStatus" or use "*" for all fields. Omit this parameter to receive a curated set of commonly used fields. |