Search icon CANCEL
Arrow left icon
Explore Products
Best Sellers
New Releases
Books
Videos
Audiobooks
Learning Hub
Conferences
Free Learning
Arrow right icon
Arrow up icon
GO TO TOP
Splunk 9.x Enterprise Certified Admin Guide

You're reading from   Splunk 9.x Enterprise Certified Admin Guide Ace the Splunk Enterprise Certified Admin exam with the help of this comprehensive prep guide

Arrow left icon
Product type Paperback
Published in Aug 2023
Publisher Packt
ISBN-13 9781803230238
Length 256 pages
Edition 1st Edition
Tools
Arrow right icon
Author (1):
Arrow left icon
Srikanth Yarlagadda Srikanth Yarlagadda
Author Profile Icon Srikanth Yarlagadda
Srikanth Yarlagadda
Arrow right icon
View More author details
Toc

Table of Contents (17) Chapters Close

Preface 1. Part 1: Splunk System Administration
2. Chapter 1: Getting Started with the Splunk Enterprise Certified Admin Exam FREE CHAPTER 3. Chapter 2: Splunk License Management 4. Chapter 3: Users, Roles, and Authentication in Splunk 5. Chapter 4: Splunk Forwarder Management 6. Chapter 5: Splunk Index Management 7. Chapter 6: Splunk Configuration Files 8. Chapter 7: Exploring Distributed Search 9. Part 2:Splunk Data Administration
10. Chapter 8: Getting Data In 11. Chapter 9: Configuring Splunk Data Inputs 12. Chapter 10: Data Parsing and Transformation 13. Chapter 11: Field Extractions and Lookups 14. Chapter 12: Self-Assessment Mock Exam 15. Index 16. Other Books You May Enjoy

Summary

In conclusion, roles, users, and authentication methods all together secure a Splunk Enterprise instance. We started by gaining an understanding of users. They are the primary entities that do the required actions and executions on the Splunk platform. Users can be either administrators (admins) or general users who will be created by the admin. We went through the creation of a new user through the Splunk Web interface and the Splunk CLI. Afterward, we looked into what a role has to offer for a user.

Splunk follows the RBAC approach. Roles are created and managed by system administrators. Splunk offers default roles, and they can be extended by inheriting them through the new role creation process.

Assigning a user to a specific role is a commonly used solution in Splunk to restrict their access to certain actions, limit their consumption of resources, and control their access to indexes. Roles in Splunk allow for fine-grained permissions management, ensuring that users...

lock icon The rest of the chapter is locked
Register for a free Packt account to unlock a world of extra content!
A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.
Unlock this book and the full library FREE for 7 days
Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of
Renews at €18.99/month. Cancel anytime