We have multiple secrets for the different tiers (forwarders/search heads etc.). Some of the apps like IPS needs to have UI to encrypt password 😞 which is not possible on all tiers.
Is there a tool/API which can encrypt the password based on splunk.secret ?
eg. what I'm looking for is
=> supply passwords.conf and splunk.secret as inputs to the tool
=> run the api/tool so that it takes passwords.conf and splunk.secret of the relevant tier/server and hash the password with it
Thanks in advance
You could spin up a splunk instance with the splunk secret. Then use the encrypted password endpoint via your own script to enter passwords then grab the results from passwords.conf.
View solution in original post
There's an even easier available now, a Python project called splunksecrets that can be installed via PIP and gives you an easy CLI to encrypt + decrypt new and old secrets:
I had seen the website, but great to see the answer from the person itself. 🙂 You guys are real heroes.
We had similar issues and great if we can work on a github project to make this automated for ansible
Accepting the answer.