The above helped me fix my problem as well. The role that the affected user was mapped to is supposed to inherit the base user account and tack on a few extra things. However, the inherited role went missing for reasons I'm still not clear on.
I had to edit $SPLUNK_HOME/etc/system/local/authorize.conf and re-add "importRoles = user" into the custom role I had, and that seems to have fixed the issue.
... View more