topic Errors in log after enabling requireClientCert in Splunk Enterprise https://community.splunk.com/t5/Splunk-Enterprise/Errors-in-log-after-enabling-requireClientCert/m-p/636902#M15906 <P>In order to satisfy the "Upgrade readiness app" in 9.0.2 it seems we must set "requireClientCert = true" in our server.conf under the [sslConfig] stanza. However, when I do this I begin to see a lot of errors in splunkd.log of the following nature:</P><P>03-31-2023 10:53:36.274 -0400 ERROR ExecProcessor [1996726 ExecProcessor] - message from "/opt/splunk/bin/python3.7 /opt/splunk/etc/apps/splunk_secure_gateway/bin/ssg_enable_modular_input.py" Enter PEM pass phrase:</P><P>Presumably this is because the key has a passphrase set on it, but we do have "sslPassword" set, so&nbsp; I'm not sure what's causing the issue. Our complete sslConfig stanza looks like this:</P><P>&nbsp;</P><P><SPAN>[sslConfig]<BR />enableSplunkdSSL = true<BR />sslRootCAPath = /opt/splunk/etc/auth/certs/ca.pem<BR />serverCert = /opt/splunk/etc/auth/certs/combined.pem<BR />sslPassword = &lt;REDACTED&gt;<BR />sslVerifyServerCert = true<BR />verifyServerCert = true<BR />requireClientCert = true<BR /><BR /></SPAN></P><P>I haven't been able to find this issue mentioned anywhere. Any help would be appreciated. TIA</P> Fri, 31 Mar 2023 15:09:46 GMT Brian_O 2023-03-31T15:09:46Z Errors in log after enabling requireClientCert https://community.splunk.com/t5/Splunk-Enterprise/Errors-in-log-after-enabling-requireClientCert/m-p/636902#M15906 <P>In order to satisfy the "Upgrade readiness app" in 9.0.2 it seems we must set "requireClientCert = true" in our server.conf under the [sslConfig] stanza. However, when I do this I begin to see a lot of errors in splunkd.log of the following nature:</P><P>03-31-2023 10:53:36.274 -0400 ERROR ExecProcessor [1996726 ExecProcessor] - message from "/opt/splunk/bin/python3.7 /opt/splunk/etc/apps/splunk_secure_gateway/bin/ssg_enable_modular_input.py" Enter PEM pass phrase:</P><P>Presumably this is because the key has a passphrase set on it, but we do have "sslPassword" set, so&nbsp; I'm not sure what's causing the issue. Our complete sslConfig stanza looks like this:</P><P>&nbsp;</P><P><SPAN>[sslConfig]<BR />enableSplunkdSSL = true<BR />sslRootCAPath = /opt/splunk/etc/auth/certs/ca.pem<BR />serverCert = /opt/splunk/etc/auth/certs/combined.pem<BR />sslPassword = &lt;REDACTED&gt;<BR />sslVerifyServerCert = true<BR />verifyServerCert = true<BR />requireClientCert = true<BR /><BR /></SPAN></P><P>I haven't been able to find this issue mentioned anywhere. Any help would be appreciated. TIA</P> Fri, 31 Mar 2023 15:09:46 GMT https://community.splunk.com/t5/Splunk-Enterprise/Errors-in-log-after-enabling-requireClientCert/m-p/636902#M15906 Brian_O 2023-03-31T15:09:46Z