Manage users and permissions
You can manage your tenants' users and their permissions in the Splunk Cloud Console if you have the administrator role. Manage users through role and group access permissions:
- Click the Roles tab to manage user roles.
- Click the Groups tab to view existing groups within your tenant.
You can remove a user on the Users tab by clicking the vertical ellipsis in the row of the user you want to remove. You can also invite a new user by clicking Invite User.
A role specifies the permissions that a user has. Permissions provide operational access to a resource in a tenant. Permissions are assigned to roles rather than users. Roles are then assigned to user groups. Finally, users are assigned to groups and access the permissions designated to those groups.
Three basic roles are supported by Splunk Cloud Services to help you get started: user, admin, and super admin.
Follow these steps to create a custom role in your tenant:
- Go to the Roles tab on the Splunk Cloud Console page and click the New role button.
- On the Create role module, complete the following fields:
Field Description Example Role name Enter the name for this role. App Health Admin Available permissions Search for permissions by application, service, resource, or operation. Certain permissions have required dependencies on other permissions. appregistry.apps.write Service You can optionally enter a message that the newly invited user will receive in the invitation email. Appregistry
A Splunk Cloud Services group lets you assign roles to users in the tenant. Assigning users to groups rather than directly assigning roles to users allows you to manage permissions for multiple users. In the Splunk Cloud Console interface, you can order groups by the following:
- Number of users
- Number of roles
- Date groups were created
Follow these steps to create a group in your tenant:
- Go to the Groups tab on the Splunk Cloud Console page and click the New group button.
- Enter a Group Name. Note that this must be a unique name. You cannot change this name later.
- Select the users who will be in this group and click Next.
- Select the roles that members of this group will have. Note that all group members will have all roles. The permissions that define these roles will be available to all group members. Click Next.
- Review your selections. Confirm the users on the Users tab. Confirm the roles they will have on the Roles tab. Click Create.
You can also use Splunk Cloud Services to create and edit groups. See Splunk Cloud Services CLI on the Splunk Developer Portal to learn how.
Integrate an Identity Provider with Splunk Cloud Services for authentication and authorization
This documentation applies to the following versions of Splunk® Cloud Services: current