Hello there!
I am working on a test environment where I only have one Splunk instance. I have succeeded to have a secure Splunk web with ssl. I have the following problem:
Here are my config files:
web.conf
[settings]
enableSplunkWebSSL = true
privKeyPath = <path to key>
serverCert = <path to certificate>
Server.conf
[sslConfig]
sslPassword = password
sslVerifyServerCert = True
sslVerifyServerName = True
serverCert = <path to certificate>
cliVerifyServerName = true
sslRootCAPath = <path to CA certificate>
[kvstore]
serverCert = <path to certificate>
sslPassword = password
sslVerifyServerCert = True
sslVerifyServerName = True
[pythonSslClientConfig]
sslVerifyServerCert = true
sslVerifyServerName = true
splunk-launch.conf
PYTHONHTTPSVERIFY = 1
SPLUNK_FIPS=1
I know that the configuration for securing the environment with TLS has changed since the 9.0 version of Splunk enterprise.
My CLI doesn't display any warning or error.
I have followed everything suggested in these links:
- Security updates - Splunk Documentation
- Configure TLS certificate host name validation - Splunk Documentation
- Configure Splunk Web to use TLS certificates - Splunk Documentation
Any help would be appreciated !
Regards
