In Splunk, I am aware that I can set read/write permissions for a view based on Splunk roles.
Is it possible to set these kind of permissions based on specific users and not roles?
For example, I may want only one end user in say the user role group to be able to do something that the other end users with the user role cannot do.
I know that I could just create a new role for this specific user but I am just checking to see if I do not have to do this.
Thanks in advance for your help.
asked 12 Jan '11, 10:57
You'll have to create a role for this user. Permission can only be set on per-role basis.
answered 12 Jan '11, 11:19