I am unable to generate Self-sign certificates for Splunk Web in Splunk Search Head using the path E:\Program Files\Splunk\etc\auth\mycerts. However, same is working if I give without the path i.e. $SPLUNK_HOME\bin\splunk cmd openssl genrsa -des3 -out myCAPrivateKey.key 2048. Any idea?
When i execute the commands for generating the self sign using the path i am getting below message
E:\Program Files\Splunk\bin>splunk cmd openssl genrsa -des3 -out E:\Program Files\Splunk\etc\auth\myCAPrivateKey.key 2048
usage: genrsa [args] [numbits]
-des encrypt the generated key with DES in cbc mode
-des3 encrypt the generated key with DES in ede cbc mode (168 bit key)
encrypt PEM output with cbc seed
-aes128, -aes192, -aes256
encrypt PEM output with cbc aes
-camellia128, -camellia192, -camellia256
encrypt PEM output with cbc camellia
-out file output the key to 'file
-passout arg output file pass phrase source
-f4 use F4 (0x10001) for the E value
-3 use 3 for the E value
-engine e use engine e, possibly a hardware device.
load the file (or the files in the directory) into
the random number generator
Certificate for splunk web has to be created with a key that is not password protected, maybe thats the problem
Remove the password from your key.
(Splunk Web does not support
password-protected private keys.
I hope you have followed the steps in below splunk documentation
Also you can check below links on splunk answers if it helps you.