topic Refresh SplunkUF Credentials Package in Getting Data In https://community.splunk.com/t5/Getting-Data-In/Refresh-SplunkUF-Credentials-Package/m-p/530451#M89299 <P>I downloaded the SplunkUF Credentials Package file by following the instructions <A href="https://docs.splunk.com/Documentation/SplunkCloud/8.1.2009/Admin/UnixGDI#Step_2:_Download_the_credentials_file_and_install_it_on_your_Universal_Forwarder" target="_self">here</A>, but I exposed it to the public internet.</P><P>I realize the package file contains an RSA public and private key pair, which I presume to be used to build the HTTPS connection between the Universal Forwarder and the Splunk Cloud instance.&nbsp;</P><P>I would like to assume that this key pair is compromised and move on. Is there a way to force Splunk Cloud to generate another Credentials Package file with a new pair of keys?</P><P>Thanks for your help in advance, cheers.</P> Mon, 23 Nov 2020 15:37:46 GMT rainbowtiger939 2020-11-23T15:37:46Z Refresh SplunkUF Credentials Package https://community.splunk.com/t5/Getting-Data-In/Refresh-SplunkUF-Credentials-Package/m-p/530451#M89299 <P>I downloaded the SplunkUF Credentials Package file by following the instructions <A href="https://docs.splunk.com/Documentation/SplunkCloud/8.1.2009/Admin/UnixGDI#Step_2:_Download_the_credentials_file_and_install_it_on_your_Universal_Forwarder" target="_self">here</A>, but I exposed it to the public internet.</P><P>I realize the package file contains an RSA public and private key pair, which I presume to be used to build the HTTPS connection between the Universal Forwarder and the Splunk Cloud instance.&nbsp;</P><P>I would like to assume that this key pair is compromised and move on. Is there a way to force Splunk Cloud to generate another Credentials Package file with a new pair of keys?</P><P>Thanks for your help in advance, cheers.</P> Mon, 23 Nov 2020 15:37:46 GMT https://community.splunk.com/t5/Getting-Data-In/Refresh-SplunkUF-Credentials-Package/m-p/530451#M89299 rainbowtiger939 2020-11-23T15:37:46Z Re: Refresh SplunkUF Credentials Package https://community.splunk.com/t5/Getting-Data-In/Refresh-SplunkUF-Credentials-Package/m-p/530487#M89302 <P>Contact Splunk Cloud support for help with that.</P> Mon, 23 Nov 2020 18:41:41 GMT https://community.splunk.com/t5/Getting-Data-In/Refresh-SplunkUF-Credentials-Package/m-p/530487#M89302 richgalloway 2020-11-23T18:41:41Z