Which capability should I use for editing the perm...

chinmayc469 · ‎09-17-2018

I have created a report and i want to change the permission of it. The permissions should allow the users to read the report but not edit it.

How do I achieve this? Which has the capability to do this? I do not want to use admin role or (admin_all_objects) capability.

Thanks.

gl_splunkuser · ‎01-07-2021

There is not a capability for this, I mean in the authorize. conf file.

The edit permissions of a report is related with the permission in the app, so you have to go to

Manage Apps - Select the app

Edit Permissions and select - Read and Write

In that way the user can give permission of read or write reports to other users in the same app.

Regards.

kmorris_splunk · ‎09-17-2018

You can edit the permissions for any report and check off which roles have read and/or write access to that report.

chinmayc469 · ‎09-17-2018

I tried this, dint work.

Edit permission will only be enabled for the user who created the report. Even though other users have write permission o the report, they don't see edit permission feature

dudhatjanhavi · ‎09-14-2023

Did you ever find out how to do this? I'm in a similar situation and was hoping you were able to find a workaround?

Which capability should I use for editing the permissions of a report?

More Ways To Control Your Costs With Archived Metrics | Register for Tech Talk

.conf24 | Personalize your .conf experience with Learning Paths!

Threat Hunting Unlocked: How to Uplevel Your Threat Hunting With the PEAK Framework ...