Security

Community Activity

Why was I able to edit an inline extraction where my role only has "read" permission I was able to edit and save an existing inline extraction (not owned by me), as a regular user assigned to a role th... by ksoucy Path Finder in Security 05-04-2017 0 4	0	4
How to remediate CVE-2013-2566 related to "SSH RC4 Cipher" ? Hello there, Our security team did vulnerability scan on server running Splunk v6.1.3 and asked us to remediate CVE-... by hemendralodhi Contributor in Security 05-03-2017 0 1	0	1
How to disable SSLv3 on port 8090 So, we've got a vulnerability scan showing that SSLv3 is enabled on port 8090 on our Splunk 6.5.2 cluster (master, 2... by jim_mulder_CI Explorer in Security 05-03-2017 0 5	0	5
How to allow users to run real time searches as a role without that capability? Hi all, We have a relatively security-conscious system with multiple levels of data abstraction to prevent users fro... by alekksi Communicator in Security 05-03-2017 0 3	0	3
how to disable "ALL time" for user role hello i have created a customized role simple_user and assigned users to. i also wanted to disable "all time" optio... by AzmathShaik Path Finder in Security 05-03-2017 0 3	0	3
Configuring X-XSS-Protection security header Hello Team, I am quite new here. Just wanted to know that where can we configure X-XSS-Protection security header in... by splunk_kk Path Finder in Security 05-02-2017 0 3	0	3
Is there a way for me to run as a certain user without having that user's password to test permissions and capabilities? All, Our Splunk is Active Directory integrated. I have a user overseas who is stating that he cannot take certain ac... by daniel333 Builder in Security 05-02-2017 0 4	0	4
Why am I having problems logging in to Splunk? I'm taking a class that requires that I download Splunk to my laptop. The first part of the class seemed fine but n... by lynndeejohnson New Member in Security 05-01-2017 0 1	0	1
How are permissions inherited by roles? The splunk documentation describes how users inherit role properties (allowed indexes are combined, as well as capabi... by fvegdom Path Finder in Security 05-01-2017 0 3	0	3
How can I blacklist logs from a source? We are monitoring logs from the below path [monitor:///opt/IBMHTTPD85/IHS/.../*] I want to blacklist all logs from... by ppanchal Path Finder in Security 04-29-2017 0 3	0	3
Native SAML authentication with Shibboleth IdP I've been playing with our on-premise Splunk to try to get native SAML authentication working with our Shibboleth v3 ... by suarezry Builder in Security 04-28-2017 3 1	3	1
Way to set cipher order preference in cipherSuite ? I was surprised to find that splunkweb does not send a preferred list of ciphers according to their order of appearan... by evanr76 New Member in Security 04-28-2017 0 3	0	3
Setting up SSL in a Distributed deployment We have a distributed Splunk set up with SHC and Indexer Clustering enabled. Communication between a user browser and... by SwatiApte Path Finder in Security 04-28-2017 0 4	0	4
Cron Expression in Splunk Hi I want a cron expression to run in everny 4 minutes .When i give /5 * * * i am getting com.splunk.config.Splu... by jimjohn Path Finder in Security 04-27-2017 1 36	1	36
How do i change to logo in the Login page of Splunk 6.2 I want replace the Splunk logo with our company logo on the login page of Splunk 6.2. Can any one please help. This i... by harshnagpal Engager in Security 04-26-2017 2 8	2	8
Disable capabilities to User role users I would like to disable some options like USERS AND AUTHENTICATION SYSTEM DATA DISTRIBUTED ENVIRONMENT to User ... by nagarjuna280 Communicator in Security 04-25-2017 0 2	0	2
Access control for App acting strange Hi Folks, I'll try to keep this short and coherent. I created an app, a role with capabilities and indexes, added d... by jravida Communicator in Security 04-25-2017 0 3	0	3
Integration with Deepnet Two Factor authtentication using SAML Hello All, We are unable to integrate Splunk 6.5.2 with Deepnet 2FA using SAML. When I access the Splunk login page... by ramesh_babu71 Path Finder in Security 04-24-2017 0 4	0	4
Access Restriction to my splunk app I have created a Splunk app which contains a dashboard. I have not given access to some users to use my app. But whe... by nilaksh92 Path Finder in Security 04-24-2017 0 1	0	1
How do I properly configure proxy for Splunk? I'm running Splunk 6.5.2 on a Windows Server 2012 R2, and I just cannot get the proxy working. I've tried setting it ... by szabados Communicator in Security 04-24-2017 0 3	0	3
Why do capabilities keep reappearing in roles? Hi, I noticed that some roles had the "scheduled_rtsearch" capability, and I removed them from both of my search hea... by a212830 Champion in Security 04-20-2017 0 6	0	6
Why am I unable to login to Splunk account (login just spins)? I have a very old Splunk login account "stymiefl". When I try to login, the login just spins forever. I've tried di... by mikewertheimer Engager in Security 04-19-2017 0 2	0	2
How to hide system messages from a user group? Hi! I have an app for specific user groups... i want to hide the systems messages (updates, etc) for this app/users.... by castille_cisco Engager in Security 04-19-2017 0 3	0	3
About "add data" button that on home screen after login In my environment I would like to create a role who can search specific index and have same "capability" as admin. H... by yutaka1005 Builder in Security 04-19-2017 0 5	0	5
admin password reset back to default? bug? I have three indexers in a cluster. We're in the process of taking them offline, in turn, for updates. They are runni... by Michael Contributor in Security 04-18-2017 0 3	0	3