Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

web.conf not working for dhfile in 2048 encryption

tlam_splunk
Splunk Employee
Splunk Employee
‎04-28-2017 02:53 AM

Setup the web.conf using dhFile at 2048 encryption

web.conf
dhFile = $SPLUNK_HOME\etc\auth\splunkweb\DH2048.pem

Here is the command to generate the key

openssl.exe gendh -out "c:\program files\splunk\etc\auth\splunkweb\DH_2048.pem" 2048

After set it up, splunk web will not start without any error in the log file.

Tags (1)
Reply

tlam_splunk
Splunk Employee
Splunk Employee
‎04-28-2017 02:53 AM

Have to add the double quote for the parameter value in dhFile

dhFile = "$SPLUNK_HOME\etc\auth\splunkweb\DH2048.pem"

Reply

jcrabb_splunk
Splunk Employee
Splunk Employee
‎06-28-2017 09:11 AM

Just an additional comment, if one wishes to utilize the dhFile setting in server.conf, on a windows host, Splunk may not start unless there are quotes (" ") around the setting. I added that to another post as well:

Jacob
Sr. Technical Support Engineer
0 Karma
Reply

DimasSouza
Path Finder
‎09-29-2017 05:04 AM

Maybe it could be inserted as known issue or a bug?

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Event Series: Telemetry Pipeline Management

Balancing Scale and Spend: Gaining Control Over High-Volume Metrics in Splunk Observability Cloud As ...

Kick the Tires Before You Commit: A Hands-On Tour of the Splunk Observability Cloud ...

Evaluating an enterprise observability platform usually goes like this: fill out a form, get a free trial with ...

Deep insights, no barriers: Splunk Observability Cloud Free Edition

As software delivery cycles continue to accelerate, observability shouldn’t be a luxury — it should be a ...