All Apps and Add-ons

SA LDAP Search password in base 64

raziasaduddin
Path Finder

I downloaded the SA LDAP Search and noticed that the password for the account that I use to search my domains is stored in base64. Are there any plans to make it more secure like the authentication.conf LDAP strategies? We were able to get the designers of the Cisco IPS app to pass the authentication through the app instead of storing passowrds in conf files.

[spl.com]

server = host1;host2;host3

port = 636

ssl = true

basedn = DC=spl,DC=com

binddn = cn=Splunk Searcher,OU=Managed Service Accounts,DC=spl,DC=com

password = {64}fohhiuehgihgri

alternatedomain = SPL

jcoates_splunk
Splunk Employee
Splunk Employee

Hi, we switched to Splunk's internal password storage mechanism in 2014 (version 2.0).

0 Karma

Jason
Motivator

There are definitely more secure ways of storing passwords, which they should be using. in the meantime, here's how to "securely" (at least on your own box, not through some internet service) base64 your password:

$ ./bin/splunk cmd python
>>> import base64
>>> base64.b64encode('enterMyPWhere')
'base64encpwhere=='

Don't forget to leave off the quotes when pasting back in to the conf file!

raziasaduddin
Path Finder

Also, If I enter a password in as base 64, it does not work, but if I do it in plaintext, it does. Thanks for the assistance!

0 Karma
Get Updates on the Splunk Community!

See just what you’ve been missing | Observability tracks at Splunk University

Looking to sharpen your observability skills so you can better understand how to collect and analyze data from ...

Weezer at .conf25? Say it ain’t so!

Hello Splunkers, The countdown to .conf25 is on-and we've just turned up the volume! We're thrilled to ...

How SC4S Makes Suricata Logs Ingestion Simple

Network security monitoring has become increasingly critical for organizations of all sizes. Splunk has ...