Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How do I allow users to edit a view?

matt
Splunk Employee
Splunk Employee
‎01-14-2010 07:26 PM

If our users navigate to Manager --> Views they can see all the views, but they do not have permissions to edit or add new. What capability is required for this?

Tags (3)
Reply
1 Solution
Solved! Jump to solution
Solution

matt
Splunk Employee
Splunk Employee
‎01-14-2010 07:27 PM

Its not so much a capability but a permission on the app. If you go to Manager » Apps » » Permissions you can give additional roles write capability which will allow them to be able to share objects with other users. If global write perms on the app are to broad your comfort you can make the write perms more granular by creating a $SPLUNK_HOME/etc/apps//metadata/local.meta file and defining the granular write capability. You can use the default.meta file in that same directory as an example of the format. You would only need to define the modified capabilities.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

matt
Splunk Employee
Splunk Employee
‎01-14-2010 07:27 PM

Its not so much a capability but a permission on the app. If you go to Manager » Apps » » Permissions you can give additional roles write capability which will allow them to be able to share objects with other users. If global write perms on the app are to broad your comfort you can make the write perms more granular by creating a $SPLUNK_HOME/etc/apps//metadata/local.meta file and defining the granular write capability. You can use the default.meta file in that same directory as an example of the format. You would only need to define the modified capabilities.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Shape the Future of Splunk: Join the Product Research Lab!

Join the Splunk Product Research Lab and connect with us in the Slack channel #product-research-lab to get ...