Solved: Order Properties in authorize.conf

amielke · ‎11-15-2017

Is the Order in a Stanza in the authorize.conf important? Is it possible to change the example from the documantation to

[role_ninja]
rtsearch = enabled
importRoles = user
srchIndexesAllowed = *
srchIndexesDefault = mail;main
srchJobsQuota = 8
rtSrchJobsQuota = 8
srchDiskQuota = 500
srchFilter = host=foo

The "srchFilter" is now at the bottom.

anmie

gcusello · ‎11-15-2017

HI amielke,
I don't find that there are any constraints on the stanzas order in authorize.conf or other .conf files.
Yes, it's possible to change the documentation example, obviously copy file from default folder to local before modifying.
What's your problem?
Bye.
Giuseppe

View solution in original post

gcusello · ‎11-15-2017

HI amielke,
I don't find that there are any constraints on the stanzas order in authorize.conf or other .conf files.
Yes, it's possible to change the documentation example, obviously copy file from default folder to local before modifying.
What's your problem?
Bye.
Giuseppe

amielke · ‎11-15-2017

the answer sounds good. I will create the stanza automatically and some parts a constant and some dynamically.

thank you

Order Properties in authorize.conf

Splunk Enterprise Security 8.0.2 Availability: On cloud and On-premise!

Logs to Metrics

Developer Spotlight with Paul Stout