Installation

Is it ok to disable Splunk Secure Gateway?

fredclown
Builder

We have a Splunk install inside a network that will never be publicly accessible in any way shape or form. Seeing as this is the case is it ok to disable the Splunk Secure Gateway app that comes pre-installed? Are there other reasons I should keep it turned on?

Labels (1)
0 Karma
1 Solution

burwell
SplunkTrust
SplunkTrust

We have been disabling it since it was enabled by default in a previous 8.x version. 

Note that in 9.x there's a bug with the config tracker and disabling an app. See the known issues SPL 233484. We ended up configuring the config tracker to ignore the secure gateway app that we disabled.

View solution in original post

burwell
SplunkTrust
SplunkTrust

We have been disabling it since it was enabled by default in a previous 8.x version. 

Note that in 9.x there's a bug with the config tracker and disabling an app. See the known issues SPL 233484. We ended up configuring the config tracker to ignore the secure gateway app that we disabled.

Get Updates on the Splunk Community!

Now Available: Cisco Talos Threat Intelligence Integrations for Splunk Security Cloud ...

At .conf24, we shared that we were in the process of integrating Cisco Talos threat intelligence into Splunk ...

Preparing your Splunk Environment for OpenSSL3

The Splunk platform will transition to OpenSSL version 3 in a future release. Actions are required to prepare ...

Easily Improve Agent Saturation with the Splunk Add-on for OpenTelemetry Collector

Agent Saturation What and Whys In application performance monitoring, saturation is defined as the total load ...