topic How do I set up role-based access control (RBAC) in Splunk? in Splunk Answers-a-thon! https://community.splunk.com/t5/Splunk-Answers-a-thon/How-do-I-set-up-role-based-access-control-RBAC-in-Splunk/m-p/645117#M79 <P><SPAN data-sheets-value="{&quot;1&quot;:2,&quot;2&quot;:&quot;How do I set up role-based access control (RBAC) in Splunk?&quot;}" data-sheets-userformat="{&quot;2&quot;:963,&quot;3&quot;:{&quot;1&quot;:0},&quot;4&quot;:{&quot;1&quot;:2,&quot;2&quot;:15988478},&quot;9&quot;:0,&quot;10&quot;:0,&quot;11&quot;:4,&quot;12&quot;:0}">How do I set up role-based access control (RBAC) in Splunk?</SPAN></P> Tue, 30 May 2023 17:26:51 GMT yeasuh 2023-05-30T17:26:51Z How do I set up role-based access control (RBAC) in Splunk? https://community.splunk.com/t5/Splunk-Answers-a-thon/How-do-I-set-up-role-based-access-control-RBAC-in-Splunk/m-p/645117#M79 <P><SPAN data-sheets-value="{&quot;1&quot;:2,&quot;2&quot;:&quot;How do I set up role-based access control (RBAC) in Splunk?&quot;}" data-sheets-userformat="{&quot;2&quot;:963,&quot;3&quot;:{&quot;1&quot;:0},&quot;4&quot;:{&quot;1&quot;:2,&quot;2&quot;:15988478},&quot;9&quot;:0,&quot;10&quot;:0,&quot;11&quot;:4,&quot;12&quot;:0}">How do I set up role-based access control (RBAC) in Splunk?</SPAN></P> Tue, 30 May 2023 17:26:51 GMT https://community.splunk.com/t5/Splunk-Answers-a-thon/How-do-I-set-up-role-based-access-control-RBAC-in-Splunk/m-p/645117#M79 yeasuh 2023-05-30T17:26:51Z Re: How do I set up role-based access control (RBAC) in Splunk? https://community.splunk.com/t5/Splunk-Answers-a-thon/How-do-I-set-up-role-based-access-control-RBAC-in-Splunk/m-p/651209#M143 <P>Splunk offers a lot of freedom in RBAC configuration which can lead to very complex and unwieldy policies.</P><P>Start by carefully considering your users and the reasonable distinctions between them!<BR />If your environment has a small number of users that fit into distinct categories, you will want a different solution than if you have many users with blurry team boundaries.</P><P>Start with your authentication.&nbsp; Are you using local users?&nbsp; LDAP?&nbsp; SAML?<BR />Each of these will provide a mechanism for user login.&nbsp; LDAP and SAML groups can be mapped to Splunk Roles, which are collections of permissions.&nbsp; Local login users can aso be fiven&nbsp;</P> Wed, 19 Jul 2023 18:59:43 GMT https://community.splunk.com/t5/Splunk-Answers-a-thon/How-do-I-set-up-role-based-access-control-RBAC-in-Splunk/m-p/651209#M143 emottola 2023-07-19T18:59:43Z