We have remote linux servers with universal forwarders already installed by root, we are not admin of these servers and we don't even have a user for us to connect on these servers either. We would like to be able to access the servers as basic users, for instance with a "splunk" user, manage the forwarder configuration and use the splunk command lines (splunk start/restart/btool etc...) with this user, without requiring admin rights.
How can we achieve that ?
I guess we first need the "splunk" user to be created on the servers with a password so that we can at least access the machines.
Then do we just need to change the boot-start configuration and the owner of the forwarder file system ?