Security
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

how to add new role from CLI

imrago
Contributor
‎08-08-2011 08:57 AM

How could I add a new role from the CLI or REST API?

I am adding new users externally from a script and some of them needs to have a new separate role with Restricted search terms.

One solution could be to change the conf files and restart Splunk. Is there a more elegant answer to my problem?

Tags (3)
Reply
1 Solution
Solved! Jump to solution
Solution

Ayn
Legend
‎08-10-2011 10:29 AM

As far as I know there is no such functionality built in as a CLI parameter, however if you want to add roles programatically you can use the REST API: http://docs.splunk.com/Documentation/Splunk/latest/RESTAPI/RESTaccess#authorization.2Froles

View solution in original post

Reply
Solved! Jump to solution

drutstein
Explorer
‎06-05-2018 02:23 PM

You can do this a couple ways:

Through the CLI you can use the Splunk_TA_aws/bin/tools/configure/configure.py script with the following command:

/opt/splunk/bin/splunk cmd python aws_config_cli.py iam-role create --config-file input.json --hostname localhost

Create your input.json and splunk-info.json files based on the samples found in Splunk_TA_aws/bin/tools/configure/config_examples

You can also manually edit the password.conf and splunk_ta_aws_iam_roles.conf files in Splunk_TA_aws/local

Here's a passwords.conf example:

[credential:__REST_CREDENTIAL__#Splunk_TA_aws#configs/conf-splunk_ta_aws_iam_roles#BaseRestHandler:my-iam-role:]
password =

Here's a splunk_ta_aws_iam_roles.conf example:

[my-iam-role]
arn = arn:aws:iam::<aws_account_id>:role/my-iam-role

They key is to leave the password entry blank since the "credential" value isn't encrypted.

0 Karma
Reply
Solved! Jump to solution
Solution

Ayn
Legend
‎08-10-2011 10:29 AM

As far as I know there is no such functionality built in as a CLI parameter, however if you want to add roles programatically you can use the REST API: http://docs.splunk.com/Documentation/Splunk/latest/RESTAPI/RESTaccess#authorization.2Froles

Reply
Solved! Jump to solution

Ayn
Legend
‎08-11-2011 12:00 AM

Correcting myself here - while there is no 'shortcut' to doing this using the CLI, what you can do is issue REST requests using the CLI. See this blog post: http://blogs.splunk.com/2009/12/10/poke-at-our-api/

0 Karma
Reply
Solved! Jump to solution

rroberts
Splunk Employee
Splunk Employee
‎08-10-2011 08:16 AM

Do you not have SplunkWeb access? You can add roles directly via the manager view.

http://localhost:8000/splunk/en-US/manager/launcher/authentication/roles/_new?action=edit&ns=launche...

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL  The Splunk AI Assistant for SPL ...

Buttercup Games: Further Dashboarding Techniques (Part 5)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Customers Increasingly Choose Splunk for Observability

For the second year in a row, Splunk was recognized as a Leader in the 2024 Gartner® Magic Quadrant™ for ...
li.common.scroll-to.top