Security

Community Activity

I want to update the splunk.secret on my existing Splunk servers. Gotchas? For management purposes, I would like the splunk.secret on all my servers to match but its after I have started up Sp... by the_wolverine Champion in Security 07-05-2017 2 6	2	6
Restrict index access using Eventtype We have over 1000 users, we are using Active Directory, Mapping groups to Roles, and we have 100's of indexes. We nee... by santiagn Path Finder in Security 07-05-2017 0 3	0	3
In Splunk Web, why does the fields sidebar not display "interesting fields"? How come I am in the search mode and I don't have an interesting fields sidebar. Sometimes it is there and sometimes... by dxw350 Path Finder in Security 06-30-2017 0 2	0	2
We have users mapped via names like "vikram" now we want to map it via "emp id" We have users mapped via names like "vikram" now we want to map it via "emp id" as we have configured search head wit... by vikram_m Path Finder in Security 06-29-2017 0 1	0	1
SAML and "No valid splunk role found in local mapping" We have configured Splunk 6.5.1 for SAML2 authentication using a heavily customized IdP NetIQ Access Manager 4.3. We ... by jlmiranda45 New Member in Security 06-29-2017 0 1	0	1
Do splunk indexers check SSL certificate expiration date ? I've configured forwarders to use SSL certificates that are checked against the rootCA defined on the indexers. I am... by sylvainlectra Explorer in Security 06-29-2017 0 3	0	3
Splunk Education System Admin course: Is there a way to verify all labs were completed in this course? I want to appear for Splunk Admin certification and pre-req for that are Splunk sys admin and data admin courses. Att... by hkumar26 New Member in Security 06-28-2017 0 1	0	1
Why am I unable to use dhfile and 2048 encryption in Splunk Web? We have a problem trying to configure the web.conf in Splunk v652 using dhFile at 2048 encryption in Window server. ... by tlam_splunk Splunk Employee in Security 06-28-2017 0 2	0	2
Admin-like account that can't assign the can_delete role Hi, I'm looking to create an admin-like account which basically has ALL the privileges the admin account has, except... by mugurelmargarit Explorer in Security 06-26-2017 0 1	0	1
Change my splunk password, it says "please contact your Splunk administrator" I would like to do the fundamentals 1 course provided by splunk but I can't even login by jdomin30 New Member in Security 06-26-2017 0 3	0	3
Enabling SSO in splunk using siteminder I am working on enabling SSO on splunk using siteminder. I have worked with siteminder folks in my company and got ap... by anoopambli Communicator in Security 06-26-2017 1 9	1	9
algosec user login Below is the event -f LOGIN -s 181xxxxxxxxxx84 -u 00xxx -H qmxwwssddsddddwwssaa the login username is always come a... by rashid47010 Communicator in Security 06-25-2017 0 4	0	4
How to break single events created from multiple events Hi All So I have a batch job that creates flat files per day. Each line in the flat files is an individual event. Th... by nirmalya2006 Path Finder in Security 06-23-2017 0 1	0	1
How to enable/disable dashboards based on user roles.? Hi, I have a dashboard which consist of 20 panels. I want to display all 20 panels to a specific user role, and also... by gvnd Path Finder in Security 06-23-2017 0 1	0	1
inputs.conf requireClientCert being ignored So I have been trying to get a solution where you do not need to have an SSL certificate on a universal forwarder for... by phoenixdigital Builder in Security 06-23-2017 0 2	0	2
Which SSL Configurations Affect Which Port I was hoping to get some clarification on this as there is no specific information that I could find in the documenta... by phoenixdigital Builder in Security 06-22-2017 0 2	0	2
Splunk Login page Hi all, I want to remove First time sign in? from spunk login page.(or skip login page) Note:- am tried touch ${SPLUN... by harishalipaka Motivator in Security 06-22-2017 0 2	0	2
Secure forwarded data with certificates. Dear Members, We have a peculiar problem, there are 3 regions from which we collect data. Each region data should ma... by allan_newton Path Finder in Security 06-21-2017 0 1	0	1
Change the X axis to reflect a size range of the mount point being displayed in panel? My scenario: 1) I have a dynamic dropdown showing mount points for selection 2) Then I have radio btns to select a ti... by damonmanni Path Finder in Security 06-21-2017 0 3	0	3
Duration calculated incorrectly Hi, My logs have the start and end time of an event. I am using the below query to calculate duration, <filter term... by deepak02 Path Finder in Security 06-19-2017 0 4	0	4
Splunk setting that caused dashboard to relapse to older version Hi, I replaced the code of a dashboard in Splunk Search Head on Friday. Today (Monday), I found the dashboard rever... by deepak02 Path Finder in Security 06-19-2017 0 2	0	2
How to get started with Splunk Cloud with LDAP? We currently have Splunk Enterprise and we would like to try the Splunk Cloud version with LDAP. Can you provide me w... by eminiano New Member in Security 06-16-2017 0 1	0	1
2 Panels (reports) in one Dashboard but Only One Panel is visible to others I have created and added 2 reports in one dashboard but when other users are trying to view my dashboard they are onl... by sudarshan391 Path Finder in Security 06-15-2017 0 8	0	8
having hundreds of sqlitePersistentStorageImp errors in splunkd logs 04-01-2016 06:55:15.159 -0500 ERROR SQLitePersistentStorageImpl - Error processing enumerate: database disk image is ... by univofmem Engager in Security 06-14-2017 0 4	0	4
Connect to the queues using JMS I have scenario where my password for connect to the queue has "=" embeded in it. Ex: Password = "axd=jkf" . Whic... by ankithreddy777 Contributor in Security 06-13-2017 0 1	0	1