Dashboards & Visualizations
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

default.xml permission

ngholmieh
Explorer
‎04-15-2014 03:59 PM

Hi-

i am trying to modify permissions on the nav menu of an app, default.xml. After i save my change, and click on the permissions link again, i see that the change did not take effect.

I did find the following similar post:
http://answers.splunk.com/answers/84175/cant-set-permissions-for-the-navigation-menu

there is not definite answer as to what we should do to fix this. I tried adding the metadata folder with local.meta file in $SPLUNK/etc/apps/idm_app/local/ directory containing this:

more local.meta

[nav/default]
access = read : [ * ], write : [ admin, role_idm ]
owner = nobody

Still the permissions page does NOT show the write checkbox for the role_idm checked.

Can anyone recommend a way to make this work?

THanks!
Nathalie

0 Karma
Reply

SarahBOA
Path Finder
‎10-24-2014 10:22 AM

Make sure all default.xml files in every app have app level permissions. We had another default.xml file in a different app set with global permissions. Once we changed all default.xml files to have app level permissions, we did see the changes we had made to the permissions show up in the UI and the correct roles were able to edit it.

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎04-15-2014 11:09 PM

Hi ngholmieh,

your local.meta file should be in $SPLUNK_HOME/etc/apps/YourAppDir/metadata/ not in $SPLUNK_HOME/etc/apps/YourAppDir/local/.

See the docs for more details ...

cheers, MuS

0 Karma
Reply

linu1988
Champion
‎04-16-2014 03:03 PM

which account the splunkd is running under? could you provide admin access to all the path?

[nav/default]
access = read : [ * ], write : [ admin, role_idm ]
owner = admin

0 Karma
Reply

ngholmieh
Explorer
‎04-16-2014 02:52 PM

yes i did. still same behavior. THanks for your help!
N~

0 Karma
Reply

linu1988
Champion
‎04-16-2014 02:21 PM

did you restart splunk?

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎04-16-2014 01:22 PM

I will look at this tomorrow 😉

0 Karma
Reply

ngholmieh
Explorer
‎04-16-2014 09:50 AM

Hi MuS-

thanks for your answer. I did create the file in the wrong place indeed, but i went back and checked that the local.meta file actually existed in $SPLUNK_HOME/etc/apps/MyAppDir/metadata/, and it had the appropriate perms

[nav/default]
access = read : [ * ], write : [ admin, role_idm ]
owner = nobody
version = xxx
modtime = xxx

however users in role_admin still cannot write to nav/default.xml

when i re-open the permissions page in the GUI, i only see write for admin.

Any other hints?

thanks!
n~

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Cloud | Empowering Splunk Administrators with Admin Config Service (ACS)

Greetings, Splunk Cloud Admins and Splunk enthusiasts! The Admin Configuration Service (ACS) team is excited ...

Tech Talk | One Log to Rule Them All

One log to rule them all: how you can centralize your troubleshooting with Splunk logs We know how important ...

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Join Principal Threat Researcher, Michael Haag, as he walks through:An introduction to the Splunk Threat ...