Getting Data In
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
- :
- I'm able to log to the web UI but cannot access RE...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I'm able to log to the web UI but cannot access REST API
wheresvic
New Member
09-18-2018
07:46 AM
I have a Splunk Enterprise license and I have an admin user who can login via the web UI : http://localhost:8000/en-US/app/
This user also has the required user role which allows REST API access. I have also restarted the Splunk service a few times.
I still cannot login via the REST API
curl -k https://localhost:8089/services/auth/login --data-urlencode username=admin --data-urlencode password=splunklocal
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 164 100 129 100 35 686 186 --:--:-- --:--:-- --:--:-- 872<?xml version="1.0" encoding="UTF-8"?>
<response>
<messages>
<msg type="WARN">Login failed</msg>
</messages>
</response>
Note that this is on windows 10 - my colleague installed splunk on windows 7 and everthing worked fine
Splunk Enterprise Version: 7.1.3
Build: 51d9cac7b837
Any help would be very much appreciated!
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
ssadanala1
Contributor
09-19-2018
06:43 AM
Change the password and give it a try . I believe you are using same password as GUI
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
wheresvic
New Member
09-19-2018
07:10 AM
I tried that as well - no luck 😞
curl -u admin:splunklocal -k https://localhost:8089/services/auth/login/ -d"username=admin&password=splunklocal" returns
<?xml version="1.0" encoding="UTF-8"?>
<response>
<messages>
<msg type="WARN">Login failed</msg>
</messages>
</response>
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
harsmarvania57
Ultra Champion
09-19-2018
07:23 AM
Try like this, curl -k -u admin:splunklocal https://localhost:8089/services/auth/login/ -d username=admin -d password=splunklocal
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
wheresvic
New Member
09-19-2018
07:41 AM
Tried as you suggested, also no luck...
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
harsmarvania57
Ultra Champion
09-21-2018
01:49 AM
Any error in $SPLUNK_HOME/var/log/splunk/splunkd.log ? I am able to run command which is given by me on Splunk 7.1.2 successfully.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
wheresvic
New Member
09-24-2018
01:34 AM
Hi - no errors in splunkd.log either. I know it is supposed to work but it just doesn't - this is very weird 😞
Get Updates on the Splunk Community!
Community Content Calendar, November Edition
Welcome to the November edition of our Community Spotlight! Each month, we dive into the Splunk Community to ...
October Community Champions: A Shoutout to Our Contributors!
As October comes to a close, we want to take a moment to celebrate the people who make the Splunk Community ...
Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!
What are Community Office Hours?
Community Office Hours is an interactive 60-minute Zoom series where ...
