Knowledge Management
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

summary index & permissions

ives
Explorer
‎11-24-2010 06:56 PM

I've created a scheduled report that runs and populates a summary index.

From the admin account everything down to the dashboard using the query works fine.

Other users can't seem to see any of the data in the summary table, others get "No results found."

I was hoping to avoid giving them access to run the si report, to prevent multiple un-scheduled collections. In this particular case the owner of the si report is actually the report user, I had changed the permissions after the fact.

A few questions:

  • Is permission information stored in a tag for the summary index data itself?
  • Is it created at population time?
  • Is there any way to correct it or allow rights to other users? (they already have the role and auth from the role UI).

Thanks in advance.

0 Karma
Reply

ives
Explorer
‎11-24-2010 07:42 PM

Solved. Be wary of the "Restrict Search Terms" option in user or role configuration. It applies to summary indexes.

Reply

ives
Explorer
‎11-24-2010 06:59 PM

also related to... http://answers.splunk.com/questions/6154/permission-question

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

SOK it to Me: Top 3 Benefits of Using Splunk Operator on Kubernetes that’ll Make ...

    Thursday, July 9, 2026  |  11:00AM–12:00PM PDT Duration: 1 hour (includes Q&A) Managing can feel like a ...

Upgrade Prep for 10.4, Network Observability Deep Dives, and More from Splunk Lantern

Splunk Lantern is Splunk’s customer success center that provides practical guidance from Splunk experts on key ...

Splunk Developer Day announcements: AI agents, MCP tools, Forecasting, and Custom ...

Splunk Developer Day was packed with product and platform updates for developers building in the AI ...