Security
Highlighted

User role with possibility to create users

Engager

Is it possible to create a role which can create and delete users without giving them admin rights? For instance a team leader who can create or delete users in Splunk for new members of his team.

Re: User role with possibility to create users

Splunk Employee
Splunk Employee

it looks as though you can give a role the edit_user capability (in authorize.conf) to allow this:

[capability::edit_user] * Required to create, edit, or remove users. * Note that Splunk users may edit certain aspects of their information without this capability. * Also required to manage certificates for distributed search.

View solution in original post