Deployment Architecture
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

splunk edit user admin clears admin password instead of changing it

wsanderstii
Path Finder
‎05-03-2017 09:47 AM

I found this answer about changing the admin password in splunk (I am using splunkforwarder 4.5.2 actually):

https://answers.splunk.com/answers/9465/admin-password-on-command-line.html

After I issue the command " ./splunk edit user admin -password foo -role admin -auth admin:changeme" this seems to actually clear the password instead of resetting it. In other words, even after I log out of the host and log back in, I am no longer prompted for a username and password.

Is this supposed to happen?

It doesn't bother me too much because only root has permission to run the splunk command line tool anyway. And the password change does take effect on the Atom server on port 8089.

w

Tags (1)
Reply

wsanderstii
Path Finder
‎05-04-2017 11:53 AM

Splunk is not actually clearing the password - the " ./splunk edit user admin -password foo -role admin -auth admin:changeme" is only for use when the password is the default post-install "admin/changeme". When the command is run, the " -auth admin:changeme" parameters authenticate the user, and the authentication is cached for a period of time. At the same time, the command changes the password and updates the $SPLUNK_HOME/etc/passwd file.

0 Karma
Reply

DalJeanis
Legend
‎05-04-2017 11:58 AM

Interesting. so, the authentication is persistent for a period, thus not requiring the new password be entered?

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

 Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...

Splunk Observability for AI

Don’t miss out on an exciting Tech Talk on Splunk Observability for AI!Discover how Splunk’s agentic AI ...

🔐 Trust at Every Hop: How mTLS in Splunk Enterprise 10.0 Makes Security Simpler

From Idea to Implementation: Why Splunk Built mTLS into Splunk Enterprise 10.0  mTLS wasn’t just a checkbox ...