Is it possible to create a role which can create and delete users without giving them admin rights? For instance a team leader who can create or delete users in Splunk for new members of his team.
it looks as though you can give a role the edit_user capability (in authorize.conf) to allow this:
[capability::edit_user] * Required to create, edit, or remove users. * Note that Splunk users may edit certain aspects of their information without this capability. * Also required to manage certificates for distributed search.
it looks as though you can give a role the edit_user capability (in authorize.conf) to allow this:
[capability::edit_user] * Required to create, edit, or remove users. * Note that Splunk users may edit certain aspects of their information without this capability. * Also required to manage certificates for distributed search.