Quick Start
Get started with your new Panther account
Welcome to Panther!
This guide will walk you through your initial login to the Panther Console, as well as how to invite additional users. Once you've completed these steps, head to the Success Schema for full onboarding instructions.
You can manage your account and workflows in the Panther Console or using Panther Developer Workflows.
The Panther Console is Panther's web interface, where users can interact with their Panther instance. You can navigate the Panther Console via the left-hand navigation panel or press ⌘ (command) + K at any time to search and jump straight to relevant documentation.
For a preview of the Panther Console, check out the Overview video above or the Panther Product Tour.
Panther Developer Workflows are non-console workflows you can use to interact with your Panther account, including CI/CD, API, and the Panther Analysis Tool (PAT).
Panther's Glossary introduces common cloud-native, security, and Panther-specific terminology. Refer to the Glossary for extra context and clarity on terms found throughout this documentation.
To access your Panther Console, you need an instance. An instance is created when the Panther team provisions your account.
Once your account has been provisioned, you will receive an invitation email from [email protected] with your temporary Panther Console login credentials. If you don't see it, be sure to check your spam folder or reach out to your customer support team.
After the initial console login with the provided credentials, you will need to update your password and set up MFA.
Panther requires a strong password:
- Password must contain at least 12 characters
- Password must contain at least 1 uppercase character
- Password must contain at least 1 lowercase character
- Password must contain at least 1 symbol
- Password must contain at least 1 number

After you have successfully logged in, you can invite more users to the platform by navigating to Settings > Users.

We strongly recommend having at least two users with Admin role set up. This will help your organization regain access to the Panther Console if needed.
It is also recommended to routinely audit the users who have access to your Panther Console.
Once you have successfully logged into your trial account, look for the Panther Guide in the upper-right corner of the Console. The guide will walk you through a list of tasks to set up your account and begin detecting security threats:
- 1.Onboarding a data source (like AWS or Okta) to normalize data and run detections against your logs. If you need sample data to test with, please contact our Support Team using the Intercom Messenger in the bottom-right corner of the Panther Console.
- 2.Enabling a Detection Pack (like the Panther Core AWS Pack) to trigger alerts from Panther-written detections for common security issues.
- 3.Configuring an alert destination (such as Slack or PagerDuty) where you will get notified outside of the Panther Console when alerts are triggered.
The trial offers support for a limited selection of log sources with a total ingestion limit of 500 GB. Cloud Security Scanning is not available to trial users. To request moving to an unrestricted, assisted trial instead, use the Intercom Messenger.
Once you're up and running in the Panther Console, it's time to onboard data sources, set up detections, and configure alert destinations. We've created a guided checklist, Success Schema: Enable, Configure and Detect with Panther, that will help you track adoption of these features and complete your Panther onboarding.
Last modified 3d ago