topic Re: how to configure SSL on Windows in Security

how to configure SSL on Windows

abhi_2985 — Wed, 27 Mar 2024 16:19:45 GMT

i have a file with CRT extension from the third party. I am trying to convert the file into PEM but unable to get it done. there were various steps we performed but unable to get it converted. Please suggest.

Re: how to configure SSL on Windows

marnall — Fri, 29 Mar 2024 17:20:05 GMT

I assume you have already tried these or similar openssl commands?

openssl x509 -in certname.crt -out certname.pem -outform PEM openssl x509 -inform DER -in certname.crt -out certname.pem -text

Could you also try renaming the .crt directly to .pem? You might be lucky and it will already be in the PEM format.

Re: how to configure SSL on Windows

kiran_panchavat — Mon, 01 Apr 2024 14:52:14 GMT

@abhi_2985

The openssl commands needed for the conversion are straightforward to use.
Start by opening your terminal and navigating to the directory with your CRT file. Here’s how to convert .crt to .pem:

openssl x509 -in certificate.crt -out certificate.pem -outform PEM

Replace ‘certificate.crt’ with your .crt file name and ‘certificate.pem’ with your desired .pem file name.
This command will convert your .crt to .pem, providing you with a new file in .pem format.

Re: how to configure SSL on Windows

abhi_2985 — Thu, 04 Apr 2024 14:33:07 GMT

I tried changing it but didnt worked. Somehow i managed to receive the PEM file but when applying the Certificate, its not working. any help on providing steps to configure will be much appreciated.

Re: how to configure SSL on Windows

kiran_panchavat — Thu, 04 Apr 2024 16:12:49 GMT

@abhi_2985you can refer to the below documents.

Splunk Web Interface SSL Certificates – Microsoft AD CA (yaleman.org)

How do I configure an SSL cert for Splunk Web on a... - Splunk Community

Re: how to configure SSL on Windows

marnall — Thu, 04 Apr 2024 19:21:47 GMT

Are you trying to configure the SSL certificate for Splunk web, such that accessing Splunk through HTTPS will use your cert? If so, how do the SSL stanzas look on your server.conf and/or web.conf?

Re: how to configure SSL on Windows

abhi_2985 — Wed, 08 May 2024 19:56:46 GMT

Thanks for the information. I tried all the possible ways; SSL is not getting configured. Opened another case with Splunk, they are looking. even if we are trying to configure it from scratch as per the documentation, its not working. Splunk has asked for the diag file, and we have shared it to them but no response on it yet.

Re: how to configure SSL on Windows

abhi_2985 — Wed, 08 May 2024 19:59:07 GMT

server.conf -

--> enableSplunkdSSL = true

--> sslRootCAPath = path of root.pem file

--> serverCert = path of server.pem file

--> sslPassword = <mypassword>

--> sslVersions = *,-ssl2

web.conf -

--> sslVersions = *,-ssl2

--> sslPassword = <mypassword>

Re: how to configure SSL on Windows

abhi_2985 — Wed, 08 May 2024 20:00:39 GMT

already tried, it's not working. i reinstalled the whole Splunk once again just to make sure if I am doing anything wrong, but nothing worked.

Re: how to configure SSL on Windows

PickleRick — Wed, 08 May 2024 22:38:58 GMT

Ok. Back up a little.

You have a file. It's supposed to be a certificate (possibly with a certificate chain from trusted rootCA). How did you get it? Did you send someone a CSR to obtain a cert? Did you just get a cert because you mailed/called/faxed/whatever someone and told them "hey, we need a cert"? And the most important question here is - do you have a private key corresponding to that cert?