Security

Is it possible to create an App in SplunkWeb that provides at least *nix 0740 filesystem permissions?

dprichar
Engager

When creating an App within SplunkWeb, it creates the *nix directory structure with 0700 permissions. Only the owner of the Splunk instance can "access" the directory structure, and no one else (i.e. members of the *nix group cannot view the contents of the directory because the permissions are set to 0700).

I have used setgid on the parent directory, etc/apps, but to no avail.

Is there a proven method to ensure that when an App is created in SplunkWeb that members of the *nix user group will be able to access the App directory structure (i.e. 0740)?

0 Karma

jplumsdaine22
Influencer

Not that I know of - but an easier method might be to allow *nix group members to sudo as splunk

0 Karma
Get Updates on the Splunk Community!

Unlock New Opportunities with Splunk Education: Explore Our Latest Courses!

At Splunk Education, we’re dedicated to providing top-tier learning experiences that cater to every skill ...

Technical Workshop Series: Splunk Data Management and SPL2 | Register here!

Hey, Splunk Community! Ready to take your data management skills to the next level? Join us for a 3-part ...

Spotting Financial Fraud in the Haystack: A Guide to Behavioral Analytics with Splunk

In today's digital financial ecosystem, security teams face an unprecedented challenge. The sheer volume of ...