Developing for Splunk Cloud Services

Capability admin_all_objects for accessing KVstore?


HI ,

I'm working on developing a app, I observed that the only capability available for a user to access or edit kvstore is using admin_all_object.

Can you please suggest if there are any other capability to achieve this?

As a admin we do not prefer giving users this capability(admin_all_object) just to access the kvstore.


Even if i give this capability the app inspect ,points out at this as an error.


  • default/authorize.conf [role_cs_admin] contains `admin_all_objects = enabled`. File: default/authorize.conf Line Number: 16


Labels (3)
0 Karma