All Apps and Add-ons
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Is there a way to force the Splunk Add-on for Java Management Extensions to use tls?

DimasSouza
Path Finder
‎03-19-2015 08:04 AM

Hello there,

if I set on server.conf the option "sslVersions = tls" the App stops working with the message:

03-19-2015 16:00:16.294 +0100 WARN  HttpListener - Socket error from 127.0.0.1 while idling: error:1408A10B:SSL routines:SSL3_GET_CLIENT_HELLO:wrong version number
03-19-2015 16:00:16.297 +0100 ERROR ExecProcessor - message from "python /opt/splunkforwarder/etc/apps/Splunk_TA_jmx/bin/jmx.py" Error executing modular input : Received fatal alert: handshake_failure : java.lang.RuntimeException: Received fatal alert: handshake_failure

Is there a way to force Splunk_TA_jmx to use tls?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

DimasSouza
Path Finder
‎06-26-2015 06:20 AM

Just a follow up.
Since I'm running this App on Version 3.0.1 and Java 1.8 the Protocol problem ist solved.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

DimasSouza
Path Finder
‎06-26-2015 06:20 AM

Just a follow up.
Since I'm running this App on Version 3.0.1 and Java 1.8 the Protocol problem ist solved.

0 Karma
Reply
Solved! Jump to solution

jcoates_splunk
Splunk Employee
Splunk Employee
‎03-28-2015 05:20 PM

Hi, here's a guess from an offline conversation:

https://blogs.oracle.com/java-platform-group/entry/diagnosing_tls_ssl_and_https
Controls the protocol version used by Java clients. For older versions, this can update the default in case your Java 7 client wants to use TLS 1.2 as its default.
Example: -Dhttps.protocols=TLSv1,TLSv1.1,TLSv1.2
so the guess is to change/add/whatever the properties to the JVM used by the JMX AddOn.

Reply
Solved! Jump to solution

DimasSouza
Path Finder
‎03-30-2015 04:41 AM

Hello and thank you for your answer,

I managed to put it to work with your suggestion, but unfortunately only after I changed the python script to get this java parameter hardcoded. So it will probably be lost during the next add on update.
I'll have to mark it as a workaround until Splunk finds a way to make it parametrizable.

Reply
Get Updates on the Splunk Community!

Announcing the Expansion of the Splunk Academic Alliance Program

The Splunk Community is more than just an online forum — it’s a network of passionate users, administrators, ...

Learn Splunk Insider Insights, Do More With Gen AI, & Find 20+ New Use Cases You Can ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Buttercup Games: Further Dashboarding Techniques (Part 7)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...
Top