Security
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Readonly access to view access controls

saad_siddiqi
Path Finder
‎08-06-2013 07:48 PM

Hi,

The IT security guy here wants to review the splunk roles/users. I there any way by which I can give him access to Access Controls without giving the admin role.

Thanks

Tags (1)
0 Karma
Reply

jtacy
Builder
‎08-07-2013 08:13 PM

For a self-service solution, maybe giving him read access to Splunk on Splunk would work; its Configuration File Viewer feature is great and it would allow him to see config files for search peers as well.

However, it's not clear whether some of the scripts in S.o.S might expose some undesirable functions; maybe someone from Splunk can comment on how safe it is to present S.o.S to non-admin users. On my installs it defaulted to "Everyone" read/write; I later changed that, but hopefully it is safe by default.

0 Karma
Reply

gkanapathy
Splunk Employee
Splunk Employee
‎08-06-2013 10:28 PM

You could simply use "splunk cmd btool authorize.conf list" and give him the output of that, which will show the role definitions.

Reply
Get Updates on the Splunk Community!

Stay Connected: Your Guide to January Tech Talks, Office Hours, and Webinars!

What are Community Office Hours? Community Office Hours is an interactive 60-minute Zoom series where ...

[Puzzles] Solve, Learn, Repeat: Reprocessing XML into Fixed-Length Events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Data Management Digest – December 2025

Welcome to the December edition of Data Management Digest! As we continue our journey of data innovation, the ...