Security

Can you help me with an issue involving the user quota for a dashboard?

ashrafshareeb
Path Finder

Hi All,

I would like to know about the quota being used by the dashboard.

If a dashboard is opened by user X, will the query use up user X's quota or does it use up the person (owner) who had set it up?

For example: if it's a saved search that is being used in the dashboard, will the owner's search quota be used up every time any one opens that dashboard? Or is it the user who has recently opened the dashboard?

This is a bit confusing for me as a newbie, and I haven't found any references about the quota for the dashboard.

Any help or references would help!

0 Karma
1 Solution

tom_frotscher
Builder

Hi,

A Search defined directly on the dashboard will use the quota of the user who opens the dashboard. If you use reports you are able to change the behavior of the search. You have the option to chose between "run as owner" or "run as user". You can find the option in the permission dialogue of the report.

If you chose the first option, i think the quota of the owner should be used. Here is a answer which should verify this behavior:
https://answers.splunk.com/answers/690906/question-about-run-as-owner-for-saved-searches.html

Greetings,

Tom

View solution in original post

tom_frotscher
Builder

Hi,

A Search defined directly on the dashboard will use the quota of the user who opens the dashboard. If you use reports you are able to change the behavior of the search. You have the option to chose between "run as owner" or "run as user". You can find the option in the permission dialogue of the report.

If you chose the first option, i think the quota of the owner should be used. Here is a answer which should verify this behavior:
https://answers.splunk.com/answers/690906/question-about-run-as-owner-for-saved-searches.html

Greetings,

Tom

HiroshiSatoh
Champion

This settings controls it on a role level basis: authorize.conf

links:
http://docs.splunk.com/Documentation/Splunk/7.2.1/Admin/Authorizeconf

I think that you should create a role for each user.

0 Karma
Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...