Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Problem with REST API

rmorlen
Splunk Employee
Splunk Employee
‎05-23-2012 09:33 PM

We have restricted access to Splunk via the REST API. We have created a user where we think we have allowed this capability. Trying the command:

curl -k https://splunkserver:8089/services/auth/login -d username=restuser -d password=password

Get a message that login fails.

The user restuser inherits from the user role and restaccess role.

authorize.conf contains:

[role_restaccess]

importRoles = user

rtSrchJobsQuota = 0

srchIndexesAllowed = *;_*

srchIndexesDefault = *;main

srchJobsQuota = 4

srchMaxTime = 0

rest\_properties\_get = enabled

rest\_apps\_view = enabled

~~~~~~

Any suggestions?

Tags (2)
0 Karma
Reply

rmorlen
Splunk Employee
Splunk Employee
‎07-20-2012 05:35 AM

Yes. The configuration of our environment runs pretty much using Apps. Security is also controlled through an app (including LDAP configuration) with only server specific settings configured locally. We had to coordinate the local settings with the app controlled settings.

0 Karma
Reply

ineeman
Splunk Employee
Splunk Employee
‎07-11-2012 06:45 PM

rmorlen, were you able to resolve this?

0 Karma
Reply

fk319
Builder
‎05-25-2012 06:23 AM

I used a different endpoint, this may be of some help:

servicesNS/admin/$app/auth/login

0 Karma
Reply

araitz
Splunk Employee
Splunk Employee
‎05-24-2012 08:47 AM

Sorry, I can't reproduce locally or remotely. Are you sure this isn't an issue where you need to quote or escape characters in the password?

0 Karma
Reply
Get Updates on the Splunk Community!

October Community Champions: A Shoutout to Our Contributors!

As October comes to a close, we want to take a moment to celebrate the people who make the Splunk Community ...

Community Content Calendar, November Edition

Welcome to the November edition of our Community Spotlight! Each month, we dive into the Splunk Community to ...

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

What are Community Office Hours? Community Office Hours is an interactive 60-minute Zoom series where ...