https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367918#M9142 <P>This seems to be a known issue with Java 8:</P> <P><A href="http://dev.splunk.com/view/java-sdk/SP-CAAAEUV">http://dev.splunk.com/view/java-sdk/SP-CAAAEUV</A></P> <P>It may be that you need to tie in the security protocol with the service, and not your login args. In the above documentation, it links to this test class:</P> <P><A href="https://github.com/splunk/splunk-sdk-java/blob/develop/examples/com/splunk/examples/ssl_protocols/Program.java">https://github.com/splunk/splunk-sdk-java/blob/develop/examples/com/splunk/examples/ssl_protocols/Program.java</A></P> Mon, 08 May 2017 17:18:06 GMT randyabeyta 2017-05-08T17:18:06Z https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367917#M9141 <P>Using Java 8 with Splunk 6.5.3, attempting to connect with Java API to get a service object. Using the same username and password I can connect with a browser and run queries normally. I suspect an SSL / https handler issue since the return from service has a token but the value for httpHandler is null. I do not know how to approach it.</P> <P>I currently have:</P> <PRE><CODE>loginArgs.setSSLSecurityProtocol(SSLSecurityProtocol.TLSv1_2); </CODE></PRE> <P>Any suggestions very much appreciated.<BR /> Thanks</P> Mon, 08 May 2017 15:36:48 GMT https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367917#M9141 tdhealy 2017-05-08T15:36:48Z https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367918#M9142 <P>This seems to be a known issue with Java 8:</P> <P><A href="http://dev.splunk.com/view/java-sdk/SP-CAAAEUV">http://dev.splunk.com/view/java-sdk/SP-CAAAEUV</A></P> <P>It may be that you need to tie in the security protocol with the service, and not your login args. In the above documentation, it links to this test class:</P> <P><A href="https://github.com/splunk/splunk-sdk-java/blob/develop/examples/com/splunk/examples/ssl_protocols/Program.java">https://github.com/splunk/splunk-sdk-java/blob/develop/examples/com/splunk/examples/ssl_protocols/Program.java</A></P> Mon, 08 May 2017 17:18:06 GMT https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367918#M9142 randyabeyta 2017-05-08T17:18:06Z https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367919#M9143 <P>Thanks for your help Randy. I had found that Program.java yesterday after Googling my ass off, but it had failed too. So I revisited it and found that the SDK Command parser was corrupting my password string by dropping one character. So I used ServiceArgs to tray an alternative and all the connections now worked! The connection part is shown below.</P> <PRE><CODE>public SplunkNAT(Properties pr) { props = pr; errLog = Utils.initLogging(props); ServiceArgs loginArgs = new ServiceArgs(); loginArgs.setUsername(user); loginArgs.setPassword(auth); loginArgs.setHost(host); loginArgs.setPort(port); loginArgs.setScheme("https"); loginArgs.setSSLSecurityProtocol(SSLSecurityProtocol.TLSv1_2); System.out.println("Now trying to connect to Splunk using TLSv1.2"); try { Service.setSslSecurityProtocol(SSLSecurityProtocol.TLSv1_2); service = Service.connect(loginArgs); service.login(); System.out.println("\t Success!"); } catch (RuntimeException re) { errLog.severe("Unable to make Splunk Service: " + re.getMessage() + ExceptionUtils.getStackTrace(re)); } System.out.println("Installed apps: " + service.getApplications().keySet()); } </CODE></PRE> <P>-Terry</P> Mon, 08 May 2017 18:34:03 GMT https://community.splunk.com/t5/Security/Why-am-I-receiving-a-401-quot-Unauthorized-quot-error-for-all/m-p/367919#M9143 tdhealy 2017-05-08T18:34:03Z