Our users have discovered that they can add data to indexes. This could lead to a user accidently polluting a production index. I searched the Splunk documentation and the Internet but w...
Say for some app "foo" the default.meta file would look like this:
// Application-level permissions:
[]
access = read : [ ], write : [ super_manager ]
Is an user with role "s...
Use of the collect command, or enabling summary indexing for a report, this feature allows a user/role to write to any index that can be searched.
Are there any options to restrict a role's access...
Hello,
I am trying to create a correlation search that will detect users accessing devices for which they aren't authorized to use. For example, Vendor A should not be able to Access a specific f...
Hi ,
I have created an APP say "MYAPP" in splunk . Now i have interested to add an help document (pdf file ) in the static folder and make this file available to the users .How can i do t...
We are considering locking down access to share field extractions. Is anyone aware of a way to do this easily? We want users to share other KOs so we don't want to completely remove writeaccess...
Is it possible to limit a role to only have writeaccess to an index? For example I want a role to be able to do summary indexing via the collect command but I do not want them to have to be a...
...gentName=WSPRD08F&servletName=__belk_outfit_detail&servletResponseTime=168097&agentHost=belkecaprd20&agentProcess=WebLogic"
Looking at the default extraction for access on t...