Solved: FIPS enabled. What is the correct path form in ser...

e2eadmin · ‎02-15-2015

I have FIPS enabled in Splunk 6.2.1 Windows 2008R2 64bit. The kvstore stanza is required to be defined in the server.conf file when in FIPS mode. When I start Splunk the Splunk.d log shows that it cannot "find" the certs and keys for the kvstore. I am referring to caCertPath and sslKeysPath. I have tried the full absolute paths and relative paths. What is the correct path form for these parameters? Thank you.

e2eadmin · ‎02-16-2015

Found the answer:

[kvstore]
disabled = false
caCertPath = F:/Program Files/Splunk/etc/auth/
sslKeysPassword =
sslKeysPath = F:/Program Files/Splunk/etc/auth/

View solution in original post

e2eadmin · ‎02-16-2015

Found the answer:

[kvstore]
disabled = false
caCertPath = F:/Program Files/Splunk/etc/auth/
sslKeysPassword =
sslKeysPath = F:/Program Files/Splunk/etc/auth/

FIPS enabled. What is the correct path form in server.conf (kvstorestanza) for SSLKeysPath?

Can’t make it to .conf25? Join us online!

Can’t Make It to Boston? Stream .conf25 and Learn with Haya Husain

Splunk Lantern’s Guide to The Most Popular .conf25 Sessions

Unlock What’s Next: The Splunk Cloud Platform at .conf25

Are you a member of the Splunk Community?

FIPS enabled. What is the correct path form in server.conf (kvstorestanza) for SSLKeysPath?

Can’t make it to .conf25? Join us online!

Can’t Make It to Boston? Stream .conf25 and Learn with Haya Husain

Splunk Lantern’s Guide to The Most Popular .conf25 Sessions

Unlock What’s Next: The Splunk Cloud Platform at .conf25