Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk web certification configuration

uagraw01
Builder
‎05-09-2024 04:12 AM

Hello Splunkers!!

 

I want to configure SSL certificate in Splunk so that my Splunk web URL communicate over https.

To obtain "privKeyPath" in web.conf I have used below two commands.

splunk cmd openssl genrsa -aes256 -out SplunkPrivateKey.key 2048

splunk cmd openssl rsa -in SplunkPrivateKey.key -out splunk_key.key

 

To obtain "serverCert" in web.conf I have used below two commands.

splunk cmd openssl x509 -in splunk.cer -out splunk.pem

Note : splunk.cer  is with me ( Provided by organization so I am obtaining self signed certificate)

[settings]
enableSplunkWebSSL = 1
privKeyPath = D:\Splunk\etc\auth\mycert\splunk_key.key
serverCert = D:\Splunk\etc\auth\mycert\splunk.pem

I have used all the above commands and configure the certificate under the paths but still Splunk web is not working securely. Please suggest me any other modification or alteration I need to do ? 

Thanks in advance !!

Labels (1)
Labels
0 Karma
Reply

tscroggins
Influencer
‎05-12-2024 02:40 PM

Hi @uagraw01,

Browsers will not trust your self-signed certificates without additional configuration. In most cases, you'll want to use a certificate signed by a mutually trusted certificate authority. This is not an endorsement of Qualys, but https://www.ssllabs.com/ provides general information on SSL/TLS that you may find beneficial.

Reply

VatsalJagani
SplunkTrust
SplunkTrust
‎05-13-2024 11:11 PM

@uagraw01 - As suggested by @tscroggins self-signed certificates needs to be added to certificate store. Here are references to be done on Mac and Windows:

 

I hope this helps!!! If it does kindly upvote!!!

Reply

uagraw01
Builder
‎05-14-2024 10:11 AM

@tscroggins @VatsalJagani  Thanks For sharing the refrence links. I am very close to setup the secure SSL connection by using openssl. Once completely done I will share the complete steps here also.

0 Karma
Reply
Get Updates on the Splunk Community!

New Case Study Shows the Value of Partnering with Splunk Academic Alliance

The University of Nevada, Las Vegas (UNLV) is another premier research institution helping to shape the next ...

How to Monitor Google Kubernetes Engine (GKE)

We’ve looked at how to integrate Kubernetes environments with Splunk Observability Cloud, but what about ...

Index This | How can you make 45 using only 4?

October 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...