Solved: Order Properties in authorize.conf

amielke · ‎11-15-2017

Is the Order in a Stanza in the authorize.conf important? Is it possible to change the example from the documantation to

[role_ninja]
rtsearch = enabled
importRoles = user
srchIndexesAllowed = *
srchIndexesDefault = mail;main
srchJobsQuota = 8
rtSrchJobsQuota = 8
srchDiskQuota = 500
srchFilter = host=foo

The "srchFilter" is now at the bottom.

anmie

gcusello · ‎11-15-2017

HI amielke,
I don't find that there are any constraints on the stanzas order in authorize.conf or other .conf files.
Yes, it's possible to change the documentation example, obviously copy file from default folder to local before modifying.
What's your problem?
Bye.
Giuseppe

View solution in original post

gcusello · ‎11-15-2017

HI amielke,
I don't find that there are any constraints on the stanzas order in authorize.conf or other .conf files.
Yes, it's possible to change the documentation example, obviously copy file from default folder to local before modifying.
What's your problem?
Bye.
Giuseppe

amielke · ‎11-15-2017

the answer sounds good. I will create the stanza automatically and some parts a constant and some dynamically.

thank you

Order Properties in authorize.conf

SOC Modernization: How Automation and Splunk SOAR are Shaping the Next-Gen Security ...

Ask It, Fix It: Faster Investigations with AI Assistant in Observability Cloud

Index This | How many sides does a circle have?