I'd like to have a role which allows a user to manage config changes and deployment (deploy-server) from Splunk deployment server.
I don't think this user needs admin access. I found the following capability in authorize.conf.spec:
[capability::edit_deployment_server]
* Self explanatory. The deployment server admin endpoint requires this cap for edit.
Is this all that is needed?
I have confirmed that the capability is all that is needed to reload deploy-server.
edit_deployment_server = enabled
list_deployment_server
capability is all that is needed to reload a deployment server.
I have confirmed that the capability is all that is needed to reload deploy-server.
edit_deployment_server = enabled