Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Creating and installing TLS Certificates on Windows 2022 Server

tringener
Explorer
‎08-07-2024 09:07 AM

I am new to Splunk and I have been tasked to setup management and data traffic to use SSL certificates. A colleague installed Splunk 9.2.1 on Windows 2022 server on a separate application drive. A document I found on the Splunk documents site "How to obtain certificates from a third-party for inter-Splunk communication". The commands use environment variables that are not setup on my server.

Questions:

1. Where these variables supposed to be added during the install?

2. If not which variables do I need to add and where do I add them (user or system) variables?

3. Is there a major difference in configuration if Splunk is installed to an application drive not the O/S drive?

4. In generating the privatekey.key file is it supposed to be saved in the same folder as the servercertificate.csr?

 

Labels (1)
Labels
0 Karma
Reply

Tom_Lundie
Contributor
‎08-08-2024 03:26 AM

The %SPLUNK_HOME% variable that you noted in this documentation is not defined outside of the Splunk process by default.

%SPLUNK_HOME% refers to the Splunk installation folder on Windows. Typically:

 

C:\Program Files\Splunk

 

 
You can run all of those commands as the user running Splunk by either setting the environment variable or replacing it manually first. To permanently set the environment variable you can use:

 

setx SPLUNK_HOME "C:\Program Files\Splunk"

 

Read more here.

0 Karma
Reply
Get Updates on the Splunk Community!

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

 Splunk is More Than Just the Web Console For Digital Forensics and Incident Response (DFIR) practitioners, ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...