Is it possible to specify a pattern or regular expression for allowed and default indexes in the role definition?
[role_my_role] importRoles = user rtsearch = enabled srchIndexesAllowed = *_my_*;_* srchIndexesDefault = *_my_*
Thanks
Wildcards are allowed, but not regular expressions. See http://docs.splunk.com/Documentation/Splunk/6.3.1511/Admin/Authorizeconf