Security

Community Activity

TLS Connection secure with hostname but not with IP I recently received CA Certificates from my Organization´s PKI Team.In CSR, I provided Server Hostname in CN and SAN ... by krutika_ag Path Finder in Security 03-15-2024 0 2	0	2
Combine data from multiple sourcetypes I have two sourcetypes containing login information and user informationSourcetype1: Login information (useful parama... by olaskallberg Loves-to-Learn Everything in Security 03-15-2024 0 19	0	19
Vulnerabilites Hi @richgalloway Good Day!!How to fix the vulnerabilities in Splunk? Please guide me with some example.Thanks by Pooja1 Loves-to-Learn Everything in Security 03-15-2024 0 6	0	6
how to create Actions from Acrtifact? HI,I would like to know how can I create a new filter by field like "slack channel name" / phantom artifact id? how i... by Shakira1 Explorer in Security 03-12-2024 0 0	0	0
Is pass4symmkey a critical security option for indexer clustering? Hi all,I have seen that pass4symmkey is optional when enabling indexer clustering. Some say that if someone knows thi... by sigma Path Finder in Security 03-11-2024 0 1	0	1
Edit Notable Event Name When we create a notable, we want to use certain fields such as source IP and destination IP, When I create the rule ... by Nawab Communicator in Security 03-11-2024 0 8	0	8
admin account from Users disappeared Hi Team,I'm currently using Version 8.2.10 and encountered an issue today. It seems that my admin account has disappe... by mgl82 Engager in Security 03-09-2024 0 1	0	1
STIG requires file permissions, ownership, and group membership of system files and commands match the vendor value I am having trouble clearing a STIG that requires file permissions, ownership, and group membership of system files a... by jmrubio Path Finder in Security 03-01-2024 0 1	0	1
TLS certificate host name validation on Universal Forwarder Hello,I have Splunk distributed deployment (cca 20 servers + cca 100 UFs). On servers, I configured SSL encryption of... by lukasmecir Path Finder in Security 03-01-2024 0 2	0	2
Authentication.conf files Hello, I am new to splunk and noticed we have two different authentication.conf files in the local folder. I compare... by Orange_girl Loves-to-Learn Everything in Security 03-01-2024 0 4	0	4
Dashboards fetched from REST Command Hi All,I am fetching dashboards using REST Command \| rest /servicesNS/-/-/data/ui/views Not all the dashboards return... by Poojitha Communicator in Security 02-28-2024 0 1	0	1
I need a query to get the new created use cases for the last 7 days I need a query to get the new created use cases in the last 7 days and another query to get the fine tuned use cases ... by yazeed New Member in Security 02-28-2024 0 4	0	4
unable to update SSL certificate -Cannot decrypt private key -Splunk 9.0.0 Hi Everyone,We're in the process of updating the SSL certificates on our Splunk servers. However, when attempting the... by saibargavg Loves-to-Learn Lots in Security 02-28-2024 0 1	0	1
DB2 z/OS Auditing using Splunk ... Hi ,I was wondering what features does Splunk offer in auditing workload in DB2 z/OS.We are looking to audit a bunch ... by pchanons1 New Member in Security 02-26-2024 0 0	0	0
python-werkzeug CVE-2023-25577 Do any versions of splunk and splunk products utilize python-werkzeug? by simoom Explorer in Security 02-23-2024 0 2	0	2
Authenticate to REST API through LDAP or SAML? Hi, Is there a way to authenticate to the API through LDAP or SAML? right now, the only way I can authenticate is by... by sjcoluccio67 Explorer in Security 02-22-2024 0 7	0	7
How to start to create new usecase Hi Mentors,I have searched in youtube, external sources to check for usecase creation. i could see by using splunk es... by Jana42855 Explorer in Security 02-21-2024 0 6	0	6
CIM mapping tags forMicrosoft Graph Security Hello, looks like Microsoft Graph Security add all tags to all event type so its not correctly CIM mapped , any one f... by Splunk_rocks Path Finder in Security 02-19-2024 0 0	0	0
Send mail KO Hello all,I have a problem with my configuration smtp.When I send e-mail I get this error :2024-02-14 16:44:15,213 +0... by psecure Explorer in Security 02-14-2024 1 0	1	0
LDAP authentication with managed service accounts We currently use a User service account to bind with Splunk for LDAP authorization.Is there a way to use Active Direc... by kenoski Path Finder in Security 02-13-2024 0 0	0	0
Regenerate SSL certification on Splunk Hello Everyone, Previous my splunk instance has the SSL certification but unfortunately it got expired two days back... by snehalk Communicator in Security 02-12-2024 0 3	0	3
Enterprise Security in Splunk Cloud Enterprise security is not available in Splunk cloud trial version. I need assistance for it. by shrinathkumbhar Observer in Security 02-05-2024 0 4	0	4
Searchhead not able to communicate (tcp handshake with indexer on port 9997) just showing SYn packets captured hi, i am setting up a search head/indexer setup. i have port 9997 listening on indexer, i configured searchhead to se... by thaghost99 Path Finder in Security 02-05-2024 0 2	0	2
Encrypting traffic between universal forwarder and indexer I would like to start encrypting traffic between the universal forwarder on my Windows devices and my single Splunk 9... by snix Communicator in Security 02-04-2024 0 2	0	2
Redis security requirepass My company flagged redis being vulnerable to security because requirepass is not enabled. How do I enable it and give... by weicc84 Explorer in Security 02-01-2024 0 4	0	4