Installation

How do we validate Splunk UF password change?

bbaker070
Observer

We are attempting to change the password across all Universal forwarders using the command found in this link which references this command:

./splunk edit user admin -password 'fflanda$' -role admin -auth admin:changeme

 

Everything seems to run with no errors, however, how do we validate the password was actually changed to the correct one?

 

Prior to the change I would remotely browse a host with a UF (https://IP ADDRESS:8089) > Click on services > enter admin followed by default password and it would proceed to authenticate me.

 

After the password change I would follow the same process but instead the password box kept re-occurring after every password attempt indicating that the password may not have been set correctly.

 

How would we validate that the actual password has been change on the UF?

Labels (1)
0 Karma
Get Updates on the Splunk Community!

Monitoring Postgres with OpenTelemetry

Behind every business-critical application, you’ll find databases. These behind-the-scenes stores power ...

Mastering Synthetic Browser Testing: Pro Tips to Keep Your Web App Running Smoothly

To start, if you're new to synthetic monitoring, I recommend exploring this synthetic monitoring overview. In ...

Splunk Edge Processor | Popular Use Cases to Get Started with Edge Processor

Splunk Edge Processor offers more efficient, flexible data transformation – helping you reduce noise, control ...