All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

Is there a way to force the Splunk Add-on for Java Management Extensions to use tls?

DimasSouza
Path Finder
‎03-19-2015 08:04 AM

Hello there,

if I set on server.conf the option "sslVersions = tls" the App stops working with the message:

03-19-2015 16:00:16.294 +0100 WARN  HttpListener - Socket error from 127.0.0.1 while idling: error:1408A10B:SSL routines:SSL3_GET_CLIENT_HELLO:wrong version number
03-19-2015 16:00:16.297 +0100 ERROR ExecProcessor - message from "python /opt/splunkforwarder/etc/apps/Splunk_TA_jmx/bin/jmx.py" Error executing modular input : Received fatal alert: handshake_failure : java.lang.RuntimeException: Received fatal alert: handshake_failure

Is there a way to force Splunk_TA_jmx to use tls?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

DimasSouza
Path Finder
‎06-26-2015 06:20 AM

Just a follow up.
Since I'm running this App on Version 3.0.1 and Java 1.8 the Protocol problem ist solved.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

DimasSouza
Path Finder
‎06-26-2015 06:20 AM

Just a follow up.
Since I'm running this App on Version 3.0.1 and Java 1.8 the Protocol problem ist solved.

0 Karma
Reply
Solved! Jump to solution

jcoates_splunk
Splunk Employee
Splunk Employee
‎03-28-2015 05:20 PM

Hi, here's a guess from an offline conversation:

https://blogs.oracle.com/java-platform-group/entry/diagnosing_tls_ssl_and_https
Controls the protocol version used by Java clients. For older versions, this can update the default in case your Java 7 client wants to use TLS 1.2 as its default.
Example: -Dhttps.protocols=TLSv1,TLSv1.1,TLSv1.2
so the guess is to change/add/whatever the properties to the JVM used by the JMX AddOn.

Reply
Solved! Jump to solution

DimasSouza
Path Finder
‎03-30-2015 04:41 AM

Hello and thank you for your answer,

I managed to put it to work with your suggestion, but unfortunately only after I changed the python script to get this java parameter hardcoded. So it will probably be lost during the next add on update.
I'll have to mark it as a workaround until Splunk finds a way to make it parametrizable.

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Observability Simplified: Combining User Experience, Application Performance & ...

Tech Talk Observability Simplified: Combining User Experience, Application Performance & Network ...

Event Series May & June: From Network Visibility to Service Intelligence

Unifying the Network: Moving from Alert Noise to Service Intelligence with Splunk ITSI In today’s hybrid ...

Global Splunk User Group Events: May + June 2026

Your Splunk Community Awaits: Discover Upcoming User Group Events Worldwide    Staying ahead in the fast-paced ...