Security
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Replacing Splunk admin account with a non standard admin account

dshakespeare_sp
Splunk Employee
Splunk Employee
‎11-09-2012 08:23 AM

A security conscious company has a policy of removing "default" admin accounts from its software products and replacing then with a non standard admin accounts. Is the possible in Splunk?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

dshakespeare_sp
Splunk Employee
Splunk Employee
‎11-09-2012 08:33 AM

It is possible clone the admin user to a new "admin"account (eg splunkadm)with identical privileges. Once the new account is created you may delete the original admin account.

CAVEAT
If the "default" admin has created knowledge objects you will need to move these knowledge objects associated with the "default" admin to the "new" admin account.

It is advisable to test this in a Pre Production Test Enviroment to ensure that no fuctionality is lost

For futher suggestions on "hardening" the Splunk enviroment please see

http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards

View solution in original post

Reply
Solved! Jump to solution
Solution

dshakespeare_sp
Splunk Employee
Splunk Employee
‎11-09-2012 08:33 AM

It is possible clone the admin user to a new "admin"account (eg splunkadm)with identical privileges. Once the new account is created you may delete the original admin account.

CAVEAT
If the "default" admin has created knowledge objects you will need to move these knowledge objects associated with the "default" admin to the "new" admin account.

It is advisable to test this in a Pre Production Test Enviroment to ensure that no fuctionality is lost

For futher suggestions on "hardening" the Splunk enviroment please see

http://docs.splunk.com/Documentation/Splunk/5.0/Security/Hardeningstandards

Reply
Get Updates on the Splunk Community!

Mastering Data Pipelines: Unlocking Value with Splunk

 In today's AI-driven world, organizations must balance the challenges of managing the explosion of data with ...

The Latest Cisco Integrations With Splunk Platform!

Join us for an exciting tech talk where we’ll explore the latest integrations in Cisco + Splunk! We’ve ...

AI Adoption Hub Launch | Curated Resources to Get Started with AI in Splunk

Hey Splunk Practitioners and AI Enthusiasts! It’s no secret (or surprise) that AI is at the forefront of ...
Top