Security

Can the PASSWORD within user-seed.conf be hashed rather than in clear text?

chris_barrett
Communicator

Can the PASSWORD in the user-seed.conf file be a hashed representation, or does it need to be specified in the clear?

1 Solution

chris_barrett
Communicator

Answering my own question here ... The ability to specify a hashed password was added in Splunk 7.1.0.

Ref: http://docs.splunk.com/Documentation/Splunk/7.1.0/Admin/User-seedconf

View solution in original post

0 Karma

chris_barrett
Communicator

Answering my own question here ... The ability to specify a hashed password was added in Splunk 7.1.0.

Ref: http://docs.splunk.com/Documentation/Splunk/7.1.0/Admin/User-seedconf

0 Karma

acharlieh
Influencer

Trying it out on 6.5.3 on Mac, I took the hash of the password I had from the passwd file, and set it into user-seed.conf and removed the passwd file and restarted... the user was then created with the password not as the previous password, but as the hash itself. as a result it seems this is a specified in the clear sort of thing...

Unless someone finds an undocumented option to do otherwise, but thought I would share the attempt.

EDIT: Although it occurs to me, if you already have the hashed version of the password, for the admin account... you probably could just drop the generated $SPLUNK_HOME/etc/passwd file everywhere, (and touch $SPLUNK_HOME/etc/.ui_login while you're at it...)

Get Updates on the Splunk Community!

Index This | I am a number, but when you add ‘G’ to me, I go away. What number am I?

March 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...