Hello all,
Configured custom ssl certificates on Deployment Server (both splunkd and splunk web), and deployment clients are connecting to DS fine on this setup.
But, command line login started failing after this while running any commands on DS, Need help in resolving this please ? (we have requireClientCert=false).
Thanks in Advance
Chetu
Did you cycle Splunk after enabling web SSL? How are you running Splunk? As root, or another user?
Did you cycle Splunk after enabling web SSL? How are you running Splunk? As root, or another user?
Thanks @codebuilder
Not exactly sure how, but it started working. I can only think the restart (although a few times) must have fixed this.
Yes, restarted a few times.
Splunk is running as "Local System" on Windows.
What is the full command you are running? Also, have you looked at the the _audit index for any messages related to why the auth is not successful?
It's asking for the Splunk admin account password that you would have created when installing Splunk. You can reset it via the web UI if you have access, or you can reset it with the user-seed.conf method.
https://community.splunk.com/t5/Security/How-to-Reset-the-Admin-password/m-p/10622
@codebuilder Sorry for not being clear enough, It fails when I enter the admin login details. The same username and password works with Splunk web though ( this is the admin account created at installation ).
And this started after I have setup SSL for splunkd port so wondering if that is affecting the CLI authentication ? Is there a way to setup cert authentication for CLI ?
Thanks
Chetu