Overlapping Role Permissions Examples

Within specific and default permissions, granting a specific permission takes precedence over denying the same permission elsewhere. So, if a user is assigned two roles and one grants a permission and the second role denies it, the user will have permissions for the activity.

The following examples show how overlapping permissions of different roles interact. The examples enable view, edit, and delete permissions to applications for two Groups. The last column shows the resulting permissions for a specific user with roles that are assigned to each group.


	Group 1		Group 2
	Default Permissions (view, edit delete all applications) (view, edit delete all applications)	Explicit permissions (view, edit delete all applications) (view, edit delete applications-1)	Default Permissions (view, edit delete all applications) (view, edit delete all applications)	Explicit permissions (view, edit delete all applications) (view, edit delete applications-1)
A	None	Yes	Yes	None
B	Yes	None	Yes	Yes
C	Yes	None	None	None

Result for example A: User has view, edit, and delete permissions to all applications, including application-1.
Result for example B: User has view, edit, and delete permissions to all applications, including application-1.
Result for example C: User has view, edit, and delete permissions to all applications, excluding application-1.

Splunk Enterprise

Splunk Cloud Platform

Splunkbase

Enterprise Security

SOAR

IT Service Intelligence

Content Packs

Splunk Observability Cloud

AppDynamics SaaS

AppDynamics On-Premises

Virtual Appliance (Self-Hosted)

Developer Documentation

Splunkbase

Splunk Enterprise

Splunk Cloud Platform

Splunkbase

DATA MANAGEMENT

SEARCH AND ANALYTICS

ADMINISTRATION

Enterprise Security

SOAR

ENTERPRISE SECURITY

SOAR

RELATED APPS

IT Service Intelligence

Content Packs

ITSI

IT Ops

ADMINISTRATION

EXTENSIONS

Splunk Observability Cloud

MONITORING

DATA MANAGEMENT

ADMINISTRATION

AppDynamics SaaS

AppDynamics On-Premises

Virtual Appliance (Self-Hosted)

ESSENTIALS

MONITORING

ADMINISTRATION

Developer Documentation

Splunkbase

PLATFORM

OBSERVABILITY

REFERENCE

Resources

REFERENCE

Learn More

Support

Overlapping Role Permissions Examples