<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic How do we validate Splunk UF password change? in Installation</title>
    <link>https://community.splunk.com/t5/Installation/How-do-we-validate-Splunk-UF-password-change/m-p/648569#M13032</link>
    <description>&lt;P&gt;We are attempting to change the password across all Universal forwarders using the command found in &lt;A href="https://docs.splunk.com/Documentation/Splunk/9.0.5/Security/ConfigureuserswiththeCLI" target="_self"&gt;this link&lt;/A&gt; which references this command:&lt;/P&gt;
&lt;P&gt;&lt;SPAN&gt;./splunk edit user admin -password 'fflanda$' -role admin -auth admin:changeme&lt;/SPAN&gt;&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Everything seems to run with no errors, however, how do we validate the password was actually changed to the correct one?&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Prior to the change I would remotely browse a host with a UF (&lt;A href="https://IP" target="_blank" rel="noopener"&gt;https://IP&lt;/A&gt; ADDRESS:8089) &amp;gt; Click on services &amp;gt; enter admin followed by default password and it would proceed to authenticate me.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;After the password change I would follow the same process but instead the password box kept re-occurring after every password attempt indicating that the password may not have been set correctly.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;How would we validate that the actual password has been change on the UF?&lt;/P&gt;</description>
    <pubDate>Fri, 30 Jun 2023 15:09:42 GMT</pubDate>
    <dc:creator>bbaker070</dc:creator>
    <dc:date>2023-06-30T15:09:42Z</dc:date>
    <item>
      <title>How do we validate Splunk UF password change?</title>
      <link>https://community.splunk.com/t5/Installation/How-do-we-validate-Splunk-UF-password-change/m-p/648569#M13032</link>
      <description>&lt;P&gt;We are attempting to change the password across all Universal forwarders using the command found in &lt;A href="https://docs.splunk.com/Documentation/Splunk/9.0.5/Security/ConfigureuserswiththeCLI" target="_self"&gt;this link&lt;/A&gt; which references this command:&lt;/P&gt;
&lt;P&gt;&lt;SPAN&gt;./splunk edit user admin -password 'fflanda$' -role admin -auth admin:changeme&lt;/SPAN&gt;&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Everything seems to run with no errors, however, how do we validate the password was actually changed to the correct one?&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;Prior to the change I would remotely browse a host with a UF (&lt;A href="https://IP" target="_blank" rel="noopener"&gt;https://IP&lt;/A&gt; ADDRESS:8089) &amp;gt; Click on services &amp;gt; enter admin followed by default password and it would proceed to authenticate me.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;After the password change I would follow the same process but instead the password box kept re-occurring after every password attempt indicating that the password may not have been set correctly.&lt;/P&gt;
&lt;P&gt;&amp;nbsp;&lt;/P&gt;
&lt;P&gt;How would we validate that the actual password has been change on the UF?&lt;/P&gt;</description>
      <pubDate>Fri, 30 Jun 2023 15:09:42 GMT</pubDate>
      <guid>https://community.splunk.com/t5/Installation/How-do-we-validate-Splunk-UF-password-change/m-p/648569#M13032</guid>
      <dc:creator>bbaker070</dc:creator>
      <dc:date>2023-06-30T15:09:42Z</dc:date>
    </item>
  </channel>
</rss>

