Deployment Architecture

How to create a role with limited admin capabilities to put a cluster in maintenance mode?

mikebaker
Engager

Basically I need to make a Splunk account with limited admin capabilities, one of them being able to put the cluster in maintenance mode.

khaynes_splunk
Splunk Employee
Splunk Employee

This can be accomplished by creating another role that inherits the User role and adds the edit_indexer_cluster​ capability. With such a role, the user can see the indexer clustering settings menu and place the cluster into maintenance from the CLI as well.

Get Updates on the Splunk Community!

Splunk Classroom Chronicles: Training Tales and Testimonials

Welcome to the "Splunk Classroom Chronicles" series, created to help curious, career-minded learners get ...

Access Tokens Page - New & Improved

Splunk Observability Cloud recently launched an improved design for the access tokens page for better ...

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

🍂 Fall into November with a fresh lineup of Community Office Hours, Tech Talks, and Webinars we’ve ...