Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

user is not able to delete alert

HansK
Path Finder
‎12-13-2013 07:04 AM

What capabilities are needed for a user to delete alerts created by himself?

At the moment it is not possible on our system, no error is given to the user when he selects delete but nothing happens.

Tags (3)
0 Karma
Reply

altink
Builder
‎01-20-2021 06:50 AM

Hello @HansK 

Did you find a solution for Deleting the Alert?

I have the same issue, yet not resolved.

best regards
Altin

0 Karma
Reply

ChrisG
Splunk Employee
Splunk Employee
‎12-13-2013 08:11 AM

Does the user have the "power" role?

Reply

HansK
Path Finder
‎12-16-2013 11:51 PM

The user does not have the power role, he does have the schedule_search capability though.

0 Karma
Reply

piebob
Splunk Employee
Splunk Employee
‎12-13-2013 09:01 AM

as a follow-on, it looks as though the "schedule_search" capability is what allows users to work with alerts, but i'm not 100% sure it allows deletion. here's the info about roles and capabilities in Splunk: http://docs.splunk.com/Documentation/Splunk/6.0/Security/Rolesandcapabilities

Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...