Hi Everyone,
I have seen a post or two about this over the last year, and want to know if anything new has changed. I have an app that I want certain roles to only view the dashboards and views. I am able to change the advanced XML so that they cannot see the "Manager" option, but you are able to fix the URL to still get to it.
Is there any recommended ways to restrict users from accessing the Manager portion of Splunk?
Thanks!
I don't know of any way to block Manager for given users.
The reason you're not supposed to completely block "Manager" is so that users can change their password.
Revoking the appropriate capabilities in the users Roles will prevent users from viewing any data or making any changes to any Splunk configs.