Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

limit a role's capability according to app?

carmackd
Communicator
‎01-27-2011 07:12 PM

Is it possible to limit a users role capability according to what app the user is in? For example, I would like all users assigned to role_my_test_role to have the ability to schedule searches when they are using my_test_app, but not when they are using other apps such as search. I tried adding a modified authorize.conf file to my_test_app, which granted role_my_test_role the ability to schedule searches, but it didn’t work. Instead of limiting the capability to my_test_app only, it was applied to entire system (all apps).

Tags (3)
Reply
1 Solution
Solved! Jump to solution
Solution

araitz
Splunk Employee
Splunk Employee
‎01-28-2011 01:06 AM

Nope, capabilities are scoped system-wide.

It seems like it would be quite a jumbled administrative mess if they were scoped per-app, and beyond that, I'm not sure I understand the utility of allowing users to schedule searches in one app but not in another.

View solution in original post

Reply
Solved! Jump to solution
Solution

araitz
Splunk Employee
Splunk Employee
‎01-28-2011 01:06 AM

Nope, capabilities are scoped system-wide.

It seems like it would be quite a jumbled administrative mess if they were scoped per-app, and beyond that, I'm not sure I understand the utility of allowing users to schedule searches in one app but not in another.

Reply
Get Updates on the Splunk Community!

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...

[Live Demo] Watch SOC transformation in action with the reimagined Splunk Enterprise ...

Overwhelmed SOC? Splunk ES Has Your Back Tool sprawl, alert fatigue, and endless context switching are making ...

What’s New & Next in Splunk SOAR

Security teams today are dealing with more alerts, more tools, and more pressure than ever.  Join us on ...