topic Re: Replacing Splunk admin account with a non standard admin account in Security https://community.splunk.com/t5/Security/Replacing-Splunk-admin-account-with-a-non-standard-admin-account/m-p/29024#M13736 <P>It is possible clone the admin user to a new "admin"account (eg splunkadm)with identical privileges. Once the new account is created you may delete the original admin account. </P> <P>CAVEAT<BR /> If the "default" admin has created knowledge objects you will need to move these knowledge objects associated with the "default" admin to the "new" admin account.</P> <P>It is advisable to test this in a Pre Production Test Enviroment to ensure that no fuctionality is lost</P> <P>For futher suggestions on "hardening" the Splunk enviroment please see</P> <P><A href="http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards">http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards</A></P> Fri, 09 Nov 2012 16:33:22 GMT dshakespeare_sp 2012-11-09T16:33:22Z Replacing Splunk admin account with a non standard admin account https://community.splunk.com/t5/Security/Replacing-Splunk-admin-account-with-a-non-standard-admin-account/m-p/29023#M13735 <P>A security conscious company has a policy of removing "default" admin accounts from its software products and replacing then with a non standard admin accounts. Is the possible in Splunk?</P> Fri, 09 Nov 2012 16:23:10 GMT https://community.splunk.com/t5/Security/Replacing-Splunk-admin-account-with-a-non-standard-admin-account/m-p/29023#M13735 dshakespeare_sp 2012-11-09T16:23:10Z Re: Replacing Splunk admin account with a non standard admin account https://community.splunk.com/t5/Security/Replacing-Splunk-admin-account-with-a-non-standard-admin-account/m-p/29024#M13736 <P>It is possible clone the admin user to a new "admin"account (eg splunkadm)with identical privileges. Once the new account is created you may delete the original admin account. </P> <P>CAVEAT<BR /> If the "default" admin has created knowledge objects you will need to move these knowledge objects associated with the "default" admin to the "new" admin account.</P> <P>It is advisable to test this in a Pre Production Test Enviroment to ensure that no fuctionality is lost</P> <P>For futher suggestions on "hardening" the Splunk enviroment please see</P> <P><A href="http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards">http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards</A></P> Fri, 09 Nov 2012 16:33:22 GMT https://community.splunk.com/t5/Security/Replacing-Splunk-admin-account-with-a-non-standard-admin-account/m-p/29024#M13736 dshakespeare_sp 2012-11-09T16:33:22Z