I'd like to have a role which allows a user to manage config changes and deployment (deploy-server) from Splunk deployment server.
I don't think this user needs admin access. I found the following capability in authorize.conf.spec:
* Self explanatory. The deployment server admin endpoint requires this cap for edit.
Is this all that is needed?
I have confirmed that the capability is all that is needed to reload deploy-server.
editdeploymentserver = enabled
View solution in original post
list_deployment_server capability is all that is needed to reload a deployment server.