Turn on enhanced team security đź”—
Managing teams in Splunk Observability Cloud means creating and deleting teams, as well as managing membership and team security.
Turn on enhanced team security đź”—
Available in Enterprise Edition
By default, every user can join any team in your organization. If you want to restrict users from being able to join any team, you can turn on the enhanced team security setting. Turning on the enhanced team security setting also makes the Team Manager role available to teams.
Team Manager role is not part of role-based access control (RBAC). The Team Manager role allows an individual to run administrative tasks for the team. For example, editing the team description, adding or removing team members, and modifying the team notification policies. These permissions apply only to the team they are a member of and do not apply across the entire organization.
To learn more about team roles and permissions, see Team roles and permissions.
You must be a Splunk Observability Cloud administrator to apply this setting. This setting applies to every team in your organization.
To turn on the enhanced team security setting, follow these steps:
Log in to Splunk Observability Cloud.
In the left navigation menu, select
.Select the Restrict Access check box.
Team roles and permissions đź”—
This table presents the available team roles and their permissions. Some team roles and permissions change based on whether enhanced team security is turned on. For example, when you turn on enhanced team security, the Team Manager role is available, and Splunk Observability Cloud administrators or Team Managers must add users.
Note
You can’t promote a team member with the read_only
RBAC role to team manager. For more information about RBAC roles, see Team roles and permissions.
To learn more about enabling enhanced team security, see Turn on enhanced team security.
Permission |
Admin |
Team Manager (Available with enhanced team security turned on) |
Team Member |
User |
---|---|---|---|---|
Create team |
Yes |
No |
No |
No |
Delete team |
Yes |
No |
No |
No |
View team landing page |
Yes |
Yes |
Yes |
Yes |
Edit team name and description |
Yes |
Yes |
|
No |
Join team |
Yes |
Not applicable: A Team Manager doesn’t join a team. Only an existing Team Member can be assigned this role. |
Not applicable: A Team Member is already on a team and doesn’t need to join. |
|
Add member |
Yes |
Yes |
No |
No |
Assign Team Manager role to Team Member |
|
Yes |
|
|
Remove member |
Yes |
Yes |
No |
No |
Edit notification policy |
Yes |
Yes |
Yes |
No |
Leave team |
|
Yes |
Yes |
Not applicable: A user must be on a team to leave a team |
Permission to link a detector to a team is based on the detector’s permissions. For example, if the user has write permission for a detector, they can link it to a team. To learn more, see View and manage permissions for detectors.
Permission to link a dashboard group to a team is based on the dashboard group’s permissions. For example, if the user has write permission for a dashboard group, they can link it to a team. To learn more, see Specify who can see and edit your dashboard groups and dashboards.