Solved: Native Password Complexity in Splunk

pj · ‎09-21-2010

Is there anyway to enforce password complexity using Splunk's native user/password authentication?

Specifically I am looking for:

First time user logs in, they must change their password in Splunk's user screen
Password must follow a minimum defined complexity (e.g. uppercase, lowercase, numbers, special chars and a certain length)
After x months, user must change their password again

I realise that it can be done through SSO, LDAP integration etc. but I am looking for something within Splunk itself (or perhaps some kind of script) as none of these other mechanisms are an option for us right now.

araitz · ‎09-21-2010

At this time, we don't have plans to implement this kind of improvement in the native Splunk authentication mechanism. The best practice is to use LDAP authentication with Splunk.

I know you mentioned that LDAP is not an option, but it isn't that hard to set up and maintain OpenLDAP.

View solution in original post

mcronkrite · ‎11-18-2015

https://answers.splunk.com/answers/143631/splunk-configuration-of-password-encryption-and-complexity...

israelgutierrez · ‎01-20-2015

Hi, i saw this is an old post but the question is the same, now in the new versions of Splunk is there an way to do this? or is in the path to do it?

araitz · ‎09-21-2010

At this time, we don't have plans to implement this kind of improvement in the native Splunk authentication mechanism. The best practice is to use LDAP authentication with Splunk.

I know you mentioned that LDAP is not an option, but it isn't that hard to set up and maintain OpenLDAP.

Native Password Complexity in Splunk

Easily Improve Agent Saturation with the Splunk Add-on for OpenTelemetry Collector

Explore the Latest Educational Offerings from Splunk [January 2025 Updates]

Developer Spotlight with Paul Stout