All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Splunk DB Connect: Is it possible to use Python to make password changes in identities.conf?

waimeh
Engager
‎02-08-2017 10:54 AM

I am in the process of (attempting to) create a script that will find changes in a password management program and put them into the Splunk DB Connect 2 identities.conf file. However, before I get too into the weeds here, I wanted to know if it is even possible to do so outside of the Identities dashboard in the add-on itself. We were hoping to automate this so we don't have to reach out to different areas of the company every X months.

So the question is: Can I use Python to make password changes in Splunk DB Connect's identities.conf file? If so, how would one go about this?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

rfitch
Path Finder
‎02-21-2017 02:12 PM

This can be done using the web API.

Here is an example of making a user:
curl -k -u admin:change https://localhost:8089/servicesNS/nobody/splunk_app_db_connect/db_connect/identities \
-d name=myDb \
-d password=s000p3r5333crkt \
-d username=splunk

And here is how you can change the password
curl -k -u admin:changeme https://localhost:8089/servicesNS/nobody/splunk_app_db_connect/db_connect/identities/**myDb** \
-d password=n33333wwwp$55w0000rd

View solution in original post

Reply
Solved! Jump to solution
Solution

rfitch
Path Finder
‎02-21-2017 02:12 PM

This can be done using the web API.

Here is an example of making a user:
curl -k -u admin:change https://localhost:8089/servicesNS/nobody/splunk_app_db_connect/db_connect/identities \
-d name=myDb \
-d password=s000p3r5333crkt \
-d username=splunk

And here is how you can change the password
curl -k -u admin:changeme https://localhost:8089/servicesNS/nobody/splunk_app_db_connect/db_connect/identities/**myDb** \
-d password=n33333wwwp$55w0000rd

Reply
Solved! Jump to solution

JorgeFT
Explorer
‎08-05-2021 11:51 AM

Hi! Is there any updated information regarding this?

I'm using the Splunk DB Connect Version 3.5.1 and I wanted to know if it is possible to change an identity password via REST API or using other method.

I've tested the answer in the solution but it doesn't encrypt the password in the identities.conf file.

Thank you and regards!

0 Karma
Reply
Solved! Jump to solution

sloshburch
Ultra Champion
‎02-27-2017 10:57 AM

Nice use of the REST endpoints. Just remember the user and app namespace used here. In your example, the user is 'nobody' and the app is 'splunk_app_db_connect'. If you prefer to keep the config affiliated with different user or app namespaces, be sure to change those accordingly.

0 Karma
Reply
Solved! Jump to solution

waimeh
Engager
‎02-23-2017 03:52 PM

Holy crap, you're a life saver! Thank you for answering! This was way better than the solution I was trying. Guess I should look more into the power of the web API.

0 Karma
Reply
Solved! Jump to solution

rfitch
Path Finder
‎02-27-2017 08:45 AM

FYI, this is somewhat deprecated in DB Connect 3. If you still want to go this route you'll need to modify the rest map.conf file and add create. By default it only has list.

[admin_external:identities]
handlertype=python
handlerfile=rh_identities.py
handleractions=create,edit,list,remove,enable,disable,_reload,move

handleractions=list

handlerpersistentmode=true DBX-2818

capability.get=db_connect_read_identity

0 Karma
Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Dynamic formatting from XML events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...