I hacked Splunk/SSO to let users auto-login as the "splunk" user using the following Apache config (you'll need to ensure that this user exists on your Splunk instance).
Listen 8989 <VirtualHost *:8989> <Proxy http://127.0.0.1:8989/*>; Allow from all </Proxy> <LocationMatch "/"> ProxyPass http://127.0.0.1:8000/ ProxyPassReverse http://127.0.0.1:8000/ Header add REMOTE_USER "splunk" RequestHeader set REMOTE_USER "splunk" </LocationMatch> </VirtualHost>
Then in Settings > Server Settings > General Settings set "SSO Trusted IP" to 127.0.0.1
Yesterday I downloaded what I assumed was the free 60-day trial version and opened and used it several times without having to log in after the first time. Today, the login screen is displayed and, to my horror, I forgot the name and password. What do I do? I thought the login screen is not needed for the free version. If a login is needed how do I reset the name and password or work around it?
If you have access to the file system, you can back up the password file and restart Splunk Enterprise. Then you will be back to admin/changeme. See http://answers.splunk.com/answers/834/how-could-i-reset-the-admin-password.
The free version does not have a login screen. The enterprise and trial versions require authentication. However, authentication can occur if either (a) you place it behind an appropriately configured proxy and enable SSO mode, or (b) you use the "insecurelogin" URL and pass the ID and password of a user in the URL. http://splunk-base.splunk.com/answers/4851/how-to-view-reports-link-without-providing-login-credenti...