topic Application level Admin access... in Security https://community.splunk.com/t5/Security/Application-level-Admin-access/m-p/106966#M3418 <P>Hi,</P> <P>I was wondering if there is a way to provide admin access @ application level (all its objects) to a specific role instead of global admin access (admin_all_objects).</P> <P>Thanks</P> Mon, 28 Sep 2020 13:47:32 GMT axcherukuri 2020-09-28T13:47:32Z Application level Admin access... https://community.splunk.com/t5/Security/Application-level-Admin-access/m-p/106966#M3418 <P>Hi,</P> <P>I was wondering if there is a way to provide admin access @ application level (all its objects) to a specific role instead of global admin access (admin_all_objects).</P> <P>Thanks</P> Mon, 28 Sep 2020 13:47:32 GMT https://community.splunk.com/t5/Security/Application-level-Admin-access/m-p/106966#M3418 axcherukuri 2020-09-28T13:47:32Z Re: Application level Admin access... https://community.splunk.com/t5/Security/Application-level-Admin-access/m-p/106967#M3419 <P>found a solution for this.</P> <OL> <LI>Define seperate indexes</LI> <LI>assign admin_all_objects accces to the role</LI> <LI>from command line add required role to write permissions. <STRONG>File: <SPLUNK home="">/etc/apps/<APP name="">/metadata/default.meta</APP></SPLUNK></STRONG></LI> </OL> <P>Sample default.meta</P> <H1>Application-level permissions</H1> <P>[]<BR /> access = read : [ * ], write : [ admin, power, myRole ]</P> <H3>EVENT TYPES</H3> <P>[eventtypes]<BR /> access = read : [ * ], write : [ admin, power, myRole ]<BR /> export = system</P> <H3>PROPS</H3> <P>[props]<BR /> access = read : [ * ], write : [ admin, power, myRole ]<BR /> export = system</P> <H3>TRANSFORMS</H3> <P>[transforms]<BR /> access = read : [ * ], write : [ admin, power, myRole ]<BR /> export = system</P> <H3>LOOKUPS</H3> <P>[lookups]<BR /> access = read : [ * ], write : [ admin, power, myRole ]<BR /> export = system</P> <H3>VIEWSTATES: even normal users should be able to create shared viewstates</H3> <P>[viewstates]<BR /> access = read : [ * ], write : [ * ]<BR /> export = system</P> <P>Thanks</P> Mon, 28 Sep 2020 13:48:04 GMT https://community.splunk.com/t5/Security/Application-level-Admin-access/m-p/106967#M3419 axcherukuri 2020-09-28T13:48:04Z