Solved: Re: Prevent access to Splunk Web GUI

jamesklassen · ‎04-27-2012

Is there a way to prevent users from accessesing Splunk Web, while still retaining the ability to run searches?

I am using the Splunk Powershell reskit to develop an application that grabs data from Splunk using Powershell...but I don't want these users to be able to access Splunk Web.

sowings · ‎04-27-2012

You could set their default application to one which you create with an empty view.

View solution in original post

sowings · ‎04-27-2012

You could set their default application to one which you create with an empty view.

sowings · ‎04-29-2014

Well yes, but the wider point here is that you'd have to tune the role (and I do recommend creating a separate role for them) for those users to only be able to see the content you want them to see.

sloshburch · ‎04-28-2014

But wouldn't they still be able to just change apps?

jamesklassen · ‎04-27-2012

Great idea, thanks!

araitz · ‎04-27-2012

Run it only on loopback and access it via ssh port forwarding, RDP, or similar.

jamesklassen · ‎04-27-2012

Nope. Me and the other admins need to access splunkweb, the support group that I'm providing this access to should not

Lowell · ‎04-27-2012

I suppose that simply shutting down splunkweb isn't the option you're looking for?

Prevent access to Splunk Web GUI

Modern way of developing distributed application using OTel

Enterprise Security Content Update (ESCU) | New Releases

Archived Metrics Now Available for APAC and EMEA realms