Set access controls for workload management
To view, create, and use workload pools and workload rules, a user's role must have the appropriate capabilities.
The following capabilities are enabled for the admin role by default:
| Capability | Permissions granted to role |
|---|---|
| list_workload_pools | List and view workload pools and workload categories. |
| list_workload_rules | List and view workload rules. |
| list_workload_policy | View enabled status of admission rules. |
| edit_workload_pools | Create and edit workload pools and edit workload categories. |
| edit_workload_rules | Create and edit workload rules. |
| edit_workload_policy | Enable or disable admission rules. |
| select_workload_pools | Assign scheduled and ad hoc searches to a workload pool. |
The admin role can add the above capabilities to other roles to grant the specified permissions. For example, to allow a power user to assign search jobs to a workload pool, the admin can add the select_workload_pools capability to the power user role.
To add a capability to a role in Splunk Web, see Add and edit roles with Splunk Web.
To add a capability to a role in authorize.conf, see Add and edit roles with authorize.conf.