Security

Discussions

Thread Info

How to create application specific user roles?

how to create application specific user roles. I have multiple applications, need to keep an set of users to perform ...

by Path Finder in

What type of security threats is Splunk most effective at responding to?

Hi guys, Regarding Splunk's SIEM system, what type of threats is it most effective at responding to? Thank you...

by New Member in

Why am I unable to connect to a Splunk server from a different domain?

Trying to connect to a Splunk 6.5 server in domain D1 from domain D2. Within domain D1, works: http://hostnameXXX....

by Path Finder in

SSL for third-party forwarding?

Hi. We are looking at the possibility of forwarding data from a Splunk indexer (with "indexAndForward") to a third-pa...

by Path Finder in

How to allow global permission for a user without enabling access to the Monitoring Console?

Splunkers, We have a unique situation while coming up with a role for power user: we don't want them (power users)...

by Path Finder in

Is license required for Job server ??

Hi All, I have a multi site indexer clustering configuration and has a separate license master, Now all indexer cl...

by Motivator in

admin password on command line

The splunkweb front end (webserver) is disabled. How can I check the admin password from the command line?

by Engager in

How to load more than 1000 records from LDAP?

by Splunk Employee in

How to view a user's effective permissions to see which are being applied?

I've been using Splunk for so long, but how do you see what a users effective permissions are? By effective permissio...

by Champion in

LDAP authentication troubleshooting information

Hi, I am trying to configure an Splunk's authentication by LDAP. I have already registered LDAP server and mapp...

by Motivator in

Login Failure with SDK for PHP and TLS

I recently upgraded my Splunk installation to use TLS in order to comply with the government. Now none of my PhP scri...

by Builder in

How to create a Splunk User Account for only editing all User Accounts?

Hey Guys! I want to be able to create a user account, that has only one capability (the edit_user), so that whenev...

by New Member in

How to resolve Splunk Web not starting after the hostname of our Splunk server changed?

An admin recently changed the hostname of of our Splunk server and the user web interface stopped working. The splunk...

by Explorer in

Should I have the same authentication scheme on my indexers as on my SHC?

I have SAML on my SHC, but LDAP on my indexers. (There is a security rational for that, but I'm not going into those ...

by Motivator in

As a Splunk admin user, why am I unable to access the roles menu ("Access controls")?

Hi, In Splunk Web when logged in as admin, I go to Settings > Access controls, and get the following message: F...

by Motivator in

Browser Usage Statistics

Hello Splunkers, I am new to Splunk and I'm having a hard time generating what should be a simple report. I'd like...

by Engager in

How to create a Splunk user using configuration files?

Using authorize.conf, we can create roles. Using authentication.conf, we can map roles to LDAP groups. But how can we...

by Contributor in

How to set up another LDAP authentication strategy using LDAP users instead of groups?

Hello, we have LDAP auth by Active Directory groups. However only one or two users would like higher permission...

by Motivator in

LDAP mapped roles to AD groups : how to map role to user for specific usage?

Hello, is it possible to map role to users but not to the whole AD group, without changing LDAP authentication for...

by Motivator in

How to add the Server Name to the Footer or Login Page?

Hi All, I was wondering if there are any built-in variables or methods for the host name which the search head run...

by New Member in

What permissions can I give a role that will allow users to share searches and dashboards?

I have a role that has access to apps and indexes and I want the searches created by these users to be able to be cha...

by Motivator in

How do we change an user password from command line with user entering password?

For security reasons, we need an user to change Splunk user's password so it won't be visible to other people. And we...

by Builder in

Native Splunk password Complexity for Splunk admin user

Is there anyway to enforce password complexity for admin user using Splunk's native user/password authentication? ...

by Builder in

PREROUTED 514 traffic not being seen by Splunk

I have set up a port redirect using iptables -t nat -A PREROUTING -p UDP -m udp --dport 514 -j REDIRECT --to-ports 51...

by Path Finder in

How determine which source/host/sourcetype has comsumed large amount of license for past 24 hours?

Hi All, Can any one guide us on how to search a which source/host/source type are consuming very high licenses, as we...

by Motivator in

Get Updates on the Splunk Community!

Security

Discussions

How to create application specific user roles?

What type of security threats is Splunk most effective at responding to?

Why am I unable to connect to a Splunk server from a different domain?

SSL for third-party forwarding?

How to allow global permission for a user without enabling access to the Monitoring Console?

Is license required for Job server ??

admin password on command line

How to load more than 1000 records from LDAP?

How to view a user's effective permissions to see which are being applied?

LDAP authentication troubleshooting information

Login Failure with SDK for PHP and TLS

How to create a Splunk User Account for only editing all User Accounts?

How to resolve Splunk Web not starting after the hostname of our Splunk server changed?

Should I have the same authentication scheme on my indexers as on my SHC?

As a Splunk admin user, why am I unable to access the roles menu ("Access controls")?

Browser Usage Statistics

How to create a Splunk user using configuration files?

How to set up another LDAP authentication strategy using LDAP users instead of groups?

LDAP mapped roles to AD groups : how to map role to user for specific usage?

How to add the Server Name to the Footer or Login Page?

What permissions can I give a role that will allow users to share searches and dashboards?

How do we change an user password from command line with user entering password?

Native Splunk password Complexity for Splunk admin user

PREROUTED 514 traffic not being seen by Splunk

How determine which source/host/sourcetype has comsumed large amount of license for past 24 hours?

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL

Buttercup Games: Further Dashboarding Techniques (Part 5)

Customers Increasingly Choose Splunk for Observability

Retrieve list max 30 roles when bind LDAP group na...

Splunk Enterprise upgrade to 9.4.0 failing - faili...

Windows performance -Velocity SD Service Counters ...

Use SSO and reverse proxy to skip the login page

Integrating LLM's into Splunk Dashboard