Exam SPLK-3003 All QuestionsBrowse all questions from this exam
Go to Exam
Question 38

A customer has implemented their own Role Based Access Control (RBAC) model to attempt to give the Security team different data access than the Operations team by creating two new Splunk roles "" security and operations. In the srchIndexesAllowed setting of authorize.conf, they specified the network index under the security role and the operations index under the operations role. The new roles are set up to inherit the default user role.

If a new user is created and assigned to the operations role only, which indexes will the user have access to search?

    Correct Answer: D

    If a new user is assigned to the operations role only, they will have access to the operations index. Additionally, since the role inherits from the default user role, the user will have access to all non-internal indexes by default. Therefore, the user will have access to the operations and network indexes.

Discussion
Vin1118Option: D

I think D. By default, user have access to all non-internal indexes

nutsuOption: D

answer D, default user role not see internal index and default see non-internal index

da_stingoOption: B

I am really struggling with your answers, boys. When I look up the users role which comes preinstalled with every splunk install by default, I do NOT see that users have access to all non-indexes. Do you have another source of truth for answering this question beside looking of the role info page showing which index the role is allowed to search?

da_stingo

*non-internal-indexes

da_stingo

never mind. i found it :/

spl_bonnOption: D

D is the correct one. user role is by default has access to all non-internal indexes

ranga19Option: D

D ,By default, user have access to all non-internal indexes.

huu_nguyenOption: D

D is the one, by default, the user does have access to all non-internal indexes but not to internal indexes

RedtonyeahOption: D

D is OK

simplekindamanOption: D

Agreed... answer is D, for reason Vin1118 mentions

tico2kOption: D

The correct answer is D