All Apps and Add-ons

Palo Alto Add-on, does it make API calls usig plain text credentials ?

aamer86
Path Finder

Hi,

I need to deploy Palo alto Add-On but must ensure it doesnt connect using plain text credentials.
Looking at the Add-On settings, there is no option to use SSL for API calls

Labels (1)
0 Karma

panguy
Contributor

The Palo Alto Networks add-on was built using Splunk's Add-on builder and leverages Splunk's credentials encryption method from the settings page.

0 Karma

aamer86
Path Finder

so when contacting Palo FW for logs how do they authenticate using plain text password or encrypted credentials

0 Karma

panguy
Contributor

I may need a little more context. Firewall logs are generally forwarded to the Splunk instance. Splunk shouldn't need to authenticate with a Firewall to get logs.

0 Karma
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In November, the Splunk Threat Research Team had one release of new security content via the Enterprise ...

Index This | Divide 100 by half. What do you get?

November 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...

Stay Connected: Your Guide to December Tech Talks, Office Hours, and Webinars!

❄️ Celebrate the season with our December lineup of Community Office Hours, Tech Talks, and Webinars! ...