I have taken over a Splunk infrastructure from a colleague of mine, and I would like to verify that I have the current cluster key in my possession before the upgrade.
Is there any light, non intrusive command (requiring authentication) that I can run and verify that I have the correct security key?
You can use below command to decrypt pass4symmkey encrypted value.
$SPLUNK_HOME/bin/splunk show-decrypted --value 'ENCRYPTED_PASSWORD'
View solution in original post