Developing for Splunk Cloud Services

Capability admin_all_objects for accessing KVstore?

jabezds
Explorer

HI ,

I'm working on developing a app, I observed that the only capability available for a user to access or edit kvstore is using admin_all_object.

Can you please suggest if there are any other capability to achieve this?

As a admin we do not prefer giving users this capability(admin_all_object) just to access the kvstore.

 

Even if i give this capability the app inspect ,points out at this as an error.

check_authorize_conf_admin_all_objects_privileges

  • default/authorize.conf [role_cs_admin] contains `admin_all_objects = enabled`. File: default/authorize.conf Line Number: 16

 

Labels (3)
0 Karma
.conf21 CFS Extended through 5/20!

Don't miss your chance
to share your Splunk
wisdom in-person or
virtually at .conf21!

Call for Speakers has
been extended through
Thursday, 5/20!