Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Deploy SSL app to UF and when UF restart, will it connect to deployment server?

inventsekar
SplunkTrust
SplunkTrust
‎11-24-2017 12:44 PM

Hi, SSL certificate renewal from Splunk default to self signed SSL.
I would like to create an app with SSL certificate and deploy that app to UF's.

  1. Once the app gets deployed, can I control when the UF should restart or after an app deployment the UF restarts automatically?
  2. After restart, the UF will have the new SSL certificate. But the deployment server is still having the old SSL certificate. Meaning, after SSL app deployment, how the UF can communicate with the deployment server?
  3. Can I deploy SSL certificate app to heavy forwarder and UF together at the same time? I mean, let's assume indexers got manually configured/renewed with self signed SSL certificate. Then, heavy forwarder and UF can be renewed together at the same time?

Please suggest.. thanks.

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
Tags (2)
0 Karma
Reply

HiroshiSatoh
Champion
‎11-26-2017 08:03 PM

How about the next step?
· Disable the deployment client remotely.
· Update the SSL of the deployment server.
· Enable deployment client remotely.
· (Restart the client remotely.)

You can also run it all at once using a script.

CLI Commands
http://docs.splunk.com/Documentation/Splunk/7.0.0/Admin/CLIadmincommands
Restart
https://answers.splunk.com/answers/92094/restart-splunkd-remotely.html

0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎11-28-2017 02:36 AM

Hi ... 2 questions..
1. Do we need to run this remote start/stop commands manually for all UF's? If we have thousands of UFs, then manual task will become a big task.
We can take list of UF and then run thru a shell script, but, is there any other simple methods Splunk providing for this task?

  1. During SSL app deployment to clients, the client's which are down, will not receive the SSL app. And as we renew the deployment server with SSL certificate app, when these down UF will become up, this will look for deployment server with old SSL, but we already renewed it. how to deal with this situation please.

Thanks again..

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎12-01-2017 12:55 AM

Hi.. any suggestions please

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎11-27-2017 12:47 AM

thanks for the reply HiroshiSatoh.. let me check this and update you back..

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply

inventsekar
SplunkTrust
SplunkTrust
‎11-26-2017 07:20 PM

Hi Splunk Gurus.. any suggestions please

thanks and best regards,
Sekar

PS - If this or any post helped you in any way, pls consider upvoting, thanks for reading !
0 Karma
Reply
Get Updates on the Splunk Community!

CX Day is Coming!

Customer Experience (CX) Day is on October 7th!! We're so excited to bring back another day full of wonderful ...

Strengthen Your Future: A Look Back at Splunk 10 Innovations and .conf25 Highlights!

The Big One: Splunk 10 is Here!  The moment many of you have been waiting for has arrived! We are thrilled to ...

Now Offering the AI Assistant Usage Dashboard in Cloud Monitoring Console

Today, we’re excited to announce the release of a brand new AI assistant usage dashboard in Cloud Monitoring ...