Splunk® Enterprise Security

Administer Splunk Enterprise Security

Manage permissions in Splunk Enterprise Security

Use the Permissions page to view and assign Enterprise Security capabilities to non-admin roles.

  1. On the Enterprise Security menu bar, select Configure > General > Permissions.
  2. Select the checkbox for the role and permissions for that role.
  3. Click Save.

For more information about ES capabilities, see Configure users and roles in the Installation and Upgrade Manual.

Manage permissions for custom roles in Splunk Enterprise Security

If you create a custom role for Enterprise Security and you want to manage it in the general permissions along with the default ES components, do the following.

  1. On the Splunk Enterprise menu bar, select Settings > Data > Data inputs.
  2. Click App Permissions Manager.
  3. Click enforce_es_permissions.
  4. Add your custom role to the comma separated list of roles to be managed.
  5. Click Save.
  6. Now you can manage the role in the general permissions.
Last modified on 17 April, 2023
Manage credentials in Splunk Enterprise Security   Customize the menu bar in Splunk Enterprise Security

This documentation applies to the following versions of Splunk® Enterprise Security: 7.0.1, 7.0.2, 7.1.0, 7.1.1, 7.1.2, 7.2.0, 7.3.0, 7.3.1, 7.3.2

Was this topic useful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters