Splunk Dev

Password access without list_storage_passwords

ohbuckeyeio
Communicator

Has anyone figured out a way to store passwords for user consumption that does not let them see the value given by list_storage_passwords? I have a use case for a custom command that needs a password. I want to allow non-advanced users access to the command without the ability to read clear passwords.

0 Karma

thellmann
Splunk Employee
Splunk Employee

I'm not sure you'd be able to prevent the user from having the ability to view the secret at *all*, but you can get more granular than just all-or-nothing with `list_storage_passwords`. I just answered a similar question here with some details that might help you out: https://community.splunk.com/t5/Splunk-Dev/What-are-secret-storage-permissions-requirements/m-p/6706...

0 Karma
Get Updates on the Splunk Community!

Prove Your Splunk Prowess at .conf25—No Prereqs Required!

Your Next Big Security Credential: No Prerequisites Needed We know you’ve got the skills, and now, earning the ...

Splunk Observability Cloud's AI Assistant in Action Series: Observability as Code

This is the sixth post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how to ...

Splunk Answers Content Calendar, July Edition I

Hello Community! Welcome to another month of Community Content Calendar series! For the month of July, we will ...