Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Is it possible to configure a SSL Splunk server to be the License Master of a non-SSL Splunk search head?

Jarohnimo
Builder
‎12-22-2016 08:05 AM

Hi All,

So I setup a stand alone Splunk Environment and the choice was made to bind it with SSL. So we have https://BoxA that has all the roles.

We now have a brand new box that we would like to use as a Search head and we do NOT want to put SSL on this box. We would like to use BoxA as BoxB's License Master but each time i try to make the connection it throws an error
"Bad request - inhandler localslave edittracker failed reason = warn: path=/masterlm/usage;invalid signature on request

from IP: X.X.X.X

Do I have to setup the 2nd Box (BoxB) with SSL in order for it to join (become a license slave/ sh) for Box A. thanks

Labels (2)
0 Karma
Reply

arkadyz1
Builder
‎12-22-2016 10:01 AM

I can't find the existing answer to that question now, but here are some simple steps you could try:

  1. On the license slave (BoxB) edit server.conf in etc/system/local, find [general] stanza, pass4SymmKey property in it - must have some hashed security value - and change it to the default "changeme" value: pass4SymmKey = changeme.
  2. Restart Splunk on BoxB.
  3. Try setting up the license master/slave relationship now.
0 Karma
Reply

dflodstrom
Builder
‎12-22-2016 08:44 AM

When you specify the URI for the license server are you saying https://xxx.xxx.xxx.xxx:8089 ?

Not using SSL for Splunk web on BoxB shouldn't be an issue.

0 Karma
Reply

Jarohnimo
Builder
‎12-22-2016 06:04 PM

Yes, I'm using it as you've said. I've set this up in other environments without issue. Never in mixed configuration.

I inherited this environment. it's possible that the previous person handjammed something he shouldn't into a config file.

0 Karma
Reply

ptcrusher
Explorer
‎05-08-2020 11:42 AM

@Jarohnimo were you able to sort out this "mixed" setup. We're facing a similar issue while trying to point a non-SSL enabled client to a SSL enabled License Master. Any hints?

0 Karma
Reply

jwelch_splunk
Splunk Employee
Splunk Employee
‎12-22-2016 09:39 AM

8089 uses ssl by default unless you over-ride it in server.conf

from boxb what happens if you do:

source /opt/splunk/bin/setSplunkEnv
openssl s_client -connect boxa:8089 -CAfile /opt/splunk/etc/auth/cacert.pem

There could be other issues as well, but I don't see the full picture here have you used:
https://docs.splunk.com/Documentation/Splunk/6.5.1/Admin/Configurealicensemaster

Okie

0 Karma
Reply
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...