Security

Community Activity

Http Event Collector - Need real SSL certificate in Splunk Light We're trying to use Splunk Light and the HEC from the browser. Browsers don't allow ajax calls to https sites with s... by benrevorsteckle Engager in Security 05-09-2017 2 2	2	2
Has anyone been able to get Splunk Web with TLS1.2 and Firefox? Has anyone been able to get Splunk Web to work with TLS1.2 AND Firefox? I know the web.conf needs to have enableSpl... by huister New Member in Security 05-09-2017 0 2	0	2
Why am I receiving a 401 "Unauthorized" error for all queries via Java API? Using Java 8 with Splunk 6.5.3, attempting to connect with Java API to get a service object. Using the same username ... by tdhealy Explorer in Security 05-08-2017 1 2	1	2
how to restrict users group to access particular index only Hello we have two indexes (A,B) and i have 3 different groups. 1. admin 2. US-East-users 3. US-central-users our g... by saifuddin9122 Path Finder in Security 05-08-2017 0 1	0	1
What capability allows you to search /services/authentication/users? I want to grant access to a non-admin role to: \| rest /services/authentication/users, but am not sure what capability... by pkeller Contributor in Security 05-04-2017 0 3	0	3
Why was I able to edit an inline extraction where my role only has "read" permission I was able to edit and save an existing inline extraction (not owned by me), as a regular user assigned to a role th... by ksoucy Path Finder in Security 05-04-2017 0 4	0	4
How to remediate CVE-2013-2566 related to "SSH RC4 Cipher" ? Hello there, Our security team did vulnerability scan on server running Splunk v6.1.3 and asked us to remediate CVE-... by hemendralodhi Contributor in Security 05-03-2017 0 1	0	1
How to disable SSLv3 on port 8090 So, we've got a vulnerability scan showing that SSLv3 is enabled on port 8090 on our Splunk 6.5.2 cluster (master, 2... by jim_mulder_CI Explorer in Security 05-03-2017 0 5	0	5
How to allow users to run real time searches as a role without that capability? Hi all, We have a relatively security-conscious system with multiple levels of data abstraction to prevent users fro... by alekksi Communicator in Security 05-03-2017 0 3	0	3
how to disable "ALL time" for user role hello i have created a customized role simple_user and assigned users to. i also wanted to disable "all time" optio... by AzmathShaik Path Finder in Security 05-03-2017 0 3	0	3
Configuring X-XSS-Protection security header Hello Team, I am quite new here. Just wanted to know that where can we configure X-XSS-Protection security header in... by splunk_kk Path Finder in Security 05-02-2017 0 3	0	3
Is there a way for me to run as a certain user without having that user's password to test permissions and capabilities? All, Our Splunk is Active Directory integrated. I have a user overseas who is stating that he cannot take certain ac... by daniel333 Builder in Security 05-02-2017 0 4	0	4
Why am I having problems logging in to Splunk? I'm taking a class that requires that I download Splunk to my laptop. The first part of the class seemed fine but n... by lynndeejohnson New Member in Security 05-01-2017 0 1	0	1
How are permissions inherited by roles? The splunk documentation describes how users inherit role properties (allowed indexes are combined, as well as capabi... by fvegdom Path Finder in Security 05-01-2017 0 3	0	3
How can I blacklist logs from a source? We are monitoring logs from the below path [monitor:///opt/IBMHTTPD85/IHS/.../*] I want to blacklist all logs from... by ppanchal Path Finder in Security 04-29-2017 0 3	0	3
Native SAML authentication with Shibboleth IdP I've been playing with our on-premise Splunk to try to get native SAML authentication working with our Shibboleth v3 ... by suarezry Builder in Security 04-28-2017 3 1	3	1
Way to set cipher order preference in cipherSuite ? I was surprised to find that splunkweb does not send a preferred list of ciphers according to their order of appearan... by evanr76 New Member in Security 04-28-2017 0 3	0	3
Setting up SSL in a Distributed deployment We have a distributed Splunk set up with SHC and Indexer Clustering enabled. Communication between a user browser and... by SwatiApte Path Finder in Security 04-28-2017 0 4	0	4
Cron Expression in Splunk Hi I want a cron expression to run in everny 4 minutes .When i give /5 * * * i am getting com.splunk.config.Splu... by jimjohn Path Finder in Security 04-27-2017 1 36	1	36
How do i change to logo in the Login page of Splunk 6.2 I want replace the Splunk logo with our company logo on the login page of Splunk 6.2. Can any one please help. This i... by harshnagpal Engager in Security 04-26-2017 2 8	2	8
Disable capabilities to User role users I would like to disable some options like USERS AND AUTHENTICATION SYSTEM DATA DISTRIBUTED ENVIRONMENT to User ... by nagarjuna280 Communicator in Security 04-25-2017 0 2	0	2
Access control for App acting strange Hi Folks, I'll try to keep this short and coherent. I created an app, a role with capabilities and indexes, added d... by jravida Communicator in Security 04-25-2017 0 3	0	3
Integration with Deepnet Two Factor authtentication using SAML Hello All, We are unable to integrate Splunk 6.5.2 with Deepnet 2FA using SAML. When I access the Splunk login page... by ramesh_babu71 Path Finder in Security 04-24-2017 0 4	0	4
Access Restriction to my splunk app I have created a Splunk app which contains a dashboard. I have not given access to some users to use my app. But whe... by nilaksh92 Path Finder in Security 04-24-2017 0 1	0	1
How do I properly configure proxy for Splunk? I'm running Splunk 6.5.2 on a Windows Server 2012 R2, and I just cannot get the proxy working. I've tried setting it ... by szabados Communicator in Security 04-24-2017 0 3	0	3