When updating a knowledge object via REST, which of the following are valid values for the sharing Access Control List property?
When updating a knowledge object via REST, which of the following are valid values for the sharing Access Control List property?
When updating a knowledge object via REST in Splunk, valid values for the sharing Access Control List property include App, User, Global, and Nobody. These values enable you to specify the scope of accessibility and control for the object, ranging from specific applications to individual users, globally available resources, or to restrict access to nobody.
Agreed Answer is A. Per the provided Splunk Reference URL, Scroll down to the section titled, "Access Control List" https://docs.splunk.com/Documentation/Splunk/8.1.2/RESTUM/RESTusing "The following properties represent configured permissions for a resource. app - The app context for the resource. Required for updating saved search ACP properties. Allowed values are: The name of an app OR system" Example 3. Make the saved search available to all users and change the context to a different app. curl -k -u admin:pass https://localhost:8089/servicesNS/nobody/myapp/saved/searches/mysearch/move -d user=nobody -d app=otherapp