https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422194#M27830 <P>Are they 'users' or 'roles'? It's a good practice to map users to roles and restrict access to knowledge objects [ e.g. views/yourdashboard] via roles, rather than individual users. So, yes, you can restrict it.</P> Tue, 23 Apr 2019 08:40:17 GMT lakshman239 2019-04-23T08:40:17Z https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422193#M27829 <P>I have this in default.meta file </P> <PRE><CODE>access = read : [ addondev_admin, addondev_power, addondev_user, admin, can_delete, user ], write : [ addondev_admin, addondev_power, addondev_user, admin ] addondev_admin addondev_power addondev_user admin can_delete user </CODE></PRE> <P>These are all the list of users i have in my splunk instance this may get increased drastically may get 20 to 30 users. if i want to exclude permission to one single user(for eg., addondev_user) instead of adding all. Can i do it in this .meta file?</P> Tue, 23 Apr 2019 08:29:10 GMT https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422193#M27829 sivaranjiniG 2019-04-23T08:29:10Z https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422194#M27830 <P>Are they 'users' or 'roles'? It's a good practice to map users to roles and restrict access to knowledge objects [ e.g. views/yourdashboard] via roles, rather than individual users. So, yes, you can restrict it.</P> Tue, 23 Apr 2019 08:40:17 GMT https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422194#M27830 lakshman239 2019-04-23T08:40:17Z https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422195#M27831 <P>Thanks for your response <span class="lia-unicode-emoji" title=":slightly_smiling_face:">🙂</span><BR /> its roles actually. Let me elaborate my question,</P> <P>this is the content in .meta file if i exclude a dashboard access for a particular role,</P> <P>access = read : [ addondev_admin, addondev_power, addondev_user, admin, can_delete, multi1_admin, multi1_power, multi1_user, multi2_admin, multi2_power, multi2_user, power, sivaranjini_02_admin, sivaranjini_02_power, sivaranjini_02_user, sivaranjini_admin, sivaranjini_power, sivaranjini_user, splunk-system-role, user ],<BR /> write : [ addondev_admin, addondev_power, addondev_user, admin ]</P> <P>in Splunk UI i have excluded only one role added remaining, So got this updated in local.meta file. But i have to do this process through python for which i need access local.meta through my script. in this case instead of including everything Can i just use something like regex to exclude one single role </P> Wed, 30 Sep 2020 00:13:01 GMT https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422195#M27831 sivaranjiniG 2020-09-30T00:13:01Z https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422196#M27832 <P>No. I don't think the values for access can accept anything other than "*" OR actual roles.</P> <P>Do you need to exclude access to one particular role for all the dashboards or just one dashboard? If its later, it could be easier to implement access rules only for that dashboard.</P> <P>Do you really need those many roles? if your roles follow a pattern or hierarchy/inheritance, you can use the lowest role for access:read ( so any role inheriting will have access as well).</P> Tue, 23 Apr 2019 10:52:34 GMT https://community.splunk.com/t5/Dashboards-Visualizations/How-to-restrict-dashboard-access-to-one-single-user-in-default/m-p/422196#M27832 lakshman239 2019-04-23T10:52:34Z