Hello, I’m currently working with the Splunk API and I would love some clarification on a few points related to user provisioning. Through my testing of the Enterprise on-premise API, I’ve found multiple options for listing user-related entities, such as different namespaces, and methods for listing entities (users, roles, and permissions) in various services (admin and authentication services) as well as different platforms and products. I would appreciate any guidance regarding the user provisioning domain and how user provisioning works across Splunk products, platforms and services. Here are my questions: 1. Are REST API’s user provisioning entities, that I’ve found in the Enterprise platform, also available in the Cloud platform and across the services with identical structure? 2. Are user provisioning entities in Enterprise platform available in similar scope and on similar endpoints as in Cloud platform? 3. Are ACL settings, that I can find under different entities in API, tied to specific capabilities? If not, what defines the ACL?
... View more