Hi
We had a little discussion about splunk architectures and how roles should be designed.
I was wondering if anyone has any hints/best practices to define roles.
My approach so far was to b...
All,
Is it possible to give certain roles the ability to control users. I do not want to give this role admin rights, but I want them to add users.
I have tried the capabilities of " e...
Hello support, I'm planning to use edit_tcp to send data for indexing to an REST endpoint in Splunk (no need to use a forwarder). My question: - Is it possible the send data to a specific Index or...
...oes not import role_1 directly)
Does role_3 then have all the capabilities which were defined in role_1?
Does role_3 then have all the properties (e.g. srchTimeWin) which were defined in role...
Dear all,
I have two roles set for admins, "role A" that should allow all indexes to be searched, and the second (role B) that has the same capabilities except that a user for role B can't look a...
...rite_maintenance_calendar
- delete_maintenance_calendar
And also making the maintenance window lister available to the role.
But we still can not create the maintenance window with the user....
...issing from the list under Access Controls>Roles>Admin. Further, the instructions say to go under settings and there should be a 'Tokens' page but that's missing as well. What am I missing? Is there a...
Hi,
I just created an APP in Splunk Cloud and I'd like to create a new read-only role accordingly, which contains capabilities as less as possible. I hope users of this role can only read in-app d...
...o, to avoid these issues, it would be better that if we could restrict users by their roles/capabilitieswith the cron expressions.
Please if you have some ideas/workarounds.
I have admin level access to my splunk instance. I want to add the list_inputs capability to the admin role (actually it should be present by default) but I can't seem to do it.
When I click on a...