Deployment Architecture

How to create a role with limited admin capabilities to put a cluster in maintenance mode?


Basically I need to make a Splunk account with limited admin capabilities, one of them being able to put the cluster in maintenance mode.

Splunk Employee
Splunk Employee

This can be accomplished by creating another role that inherits the User role and adds the edit_indexer_cluster​ capability. With such a role, the user can see the indexer clustering settings menu and place the cluster into maintenance from the CLI as well.

Get Updates on the Splunk Community!

What's New in Splunk Cloud Platform 9.2.2403?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.2.2403! Analysts can ...

Stay Connected: Your Guide to July and August Tech Talks, Office Hours, and Webinars!

Dive into our sizzling summer lineup for July and August Community Office Hours and Tech Talks. Scroll down to ...

Edge Processor Scaling, Energy & Manufacturing Use Cases, and More New Articles on ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...