Permissions
The app ships with a built-in role named lynx-ai.
Users must be assigned the lynx-ai role (or the admin role) for the agent to function and be accessible.
Note
The agent inherits the read & write permissions of the logged-in user, thereby gaining access to apps, indexes and knowledge objects. If a user can't access data, neither can the agent.
Capabilities
| Capability | Description | In User role (default) |
|---|---|---|
list_storage_passwords |
Required to read the encrypted license key from Splunk's password storage (/storage/passwords). |
No |
rest_properties_get |
Required to read app configuration properties via the REST API (/services/properties). |
Yes |
search |
Required to execute Splunk searches. The agent uses this capability to query indexes and knowledge objects. | Yes |
Knowledge Objects
The agent can create knowledge objects only within the Lynx AI Agent app, subject to the user's write permissions.
Currently supported knowledge objects:
- Dashboards
- More coming soon!