Security

Security
Community Activity
mkolkebeck
I've confirmed using an out-of-box install that I'm no longer able to access these pages: http://splunkhost/debug/ss...
by mkolkebeck Path Finder in Security 03-14-2017
6 5
6
5
Ravencross
I've scoured the net trying to figure out how to create a saved search via the Splunk Python SDK and change user to "...
by Ravencross New Member in Security 03-13-2017
0 1
0
1
rajpraba
I have installed AWS Splunk enterprise. We plan to redirect our Node JS application logs to Splunk. I have setup http...
by rajpraba Explorer in Security 03-12-2017
0 5
0
5
davesplunk01
Installed Splunk 6.5.1 and followed the steps from https://docs.splunk.com/Documentation/Splunk/6.5.2/Security/Howtos...
by davesplunk01 Path Finder in Security 03-12-2017
0 3
0
3
davesplunk01
how to create application specific user roles. I have multiple applications, need to keep an set of users to perform ...
by davesplunk01 Path Finder in Security 03-12-2017
0 2
0
2
dave_smith
Hi guys, Regarding Splunk's SIEM system, what type of threats is it most effective at responding to? Thank you!
by dave_smith New Member in Security 03-11-2017
0 2
0
2
nk-1
Trying to connect to a Splunk 6.5 server in domain D1 from domain D2. Within domain D1, works: http://hostnameXXX.or...
by nk-1 Path Finder in Security 03-11-2017
0 3
0
3
jhigginsmq
Hi. We are looking at the possibility of forwarding data from a Splunk indexer (with "indexAndForward") to a third-pa...
by jhigginsmq Path Finder in Security 03-10-2017
0 4
0
4
ash2l
Splunkers, We have a unique situation while coming up with a role for power user: we don't want them (power users) t...
by ash2l Path Finder in Security 03-10-2017
0 2
0
2
rakesh_498115
Hi All, I have a multi site indexer clustering configuration and has a separate license master, Now all indexer clus...
by rakesh_498115 Motivator in Security 03-10-2017
0 5
0
5
steinerdani
The splunkweb front end (webserver) is disabled. How can I check the admin password from the command line?
by steinerdani Engager in Security 03-10-2017
4 5
4
5
daniel_splunk
How to load more than 1000 records from LDAP?
by daniel_splunk Splunk Employee Splunk Employee in Security 03-09-2017
3 3
3
3
bmacias84
I've been using Splunk for so long, but how do you see what a users effective permissions are? By effective permissio...
by bmacias84 Champion in Security 03-09-2017
2 4
2
4
melonman
Hi, I am trying to configure an Splunk's authentication by LDAP. I have already registered LDAP server and mapped g...
by melonman Motivator in Security 03-09-2017
0 4
0
4
kmattern
I recently upgraded my Splunk installation to use TLS in order to comply with the government. Now none of my PhP scri...
by kmattern Builder in Security 03-09-2017
0 4
0
4
qfulgham
Hey Guys! I want to be able to create a user account, that has only one capability (the edit_user), so that whenever...
by qfulgham New Member in Security 03-08-2017
0 1
0
1
chadw72
An admin recently changed the hostname of of our Splunk server and the user web interface stopped working. The splun...
by chadw72 Explorer in Security 03-06-2017
0 9
0
9
lycollicott
I have SAML on my SHC, but LDAP on my indexers. (There is a security rational for that, but I'm not going into those...
by lycollicott Motivator in Security 03-05-2017
1 6
1
6
Ant1D
Hi, In Splunk Web when logged in as admin, I go to Settings > Access controls, and get the following message: Fail:...
by Ant1D Motivator in Security 03-03-2017
0 2
0
2
mapugh73
Hello Splunkers, I am new to Splunk and I'm having a hard time generating what should be a simple report. I'd like ...
by mapugh73 Engager in Security 03-02-2017
0 10
0
10
ankithreddy777
Using authorize.conf, we can create roles. Using authentication.conf, we can map roles to LDAP groups. But how can w...
by ankithreddy777 Contributor in Security 03-02-2017
1 2
1
2
splunkreal
Hello, we have LDAP auth by Active Directory groups. However only one or two users would like higher permissions (r...
by splunkreal Motivator in Security 03-02-2017
0 3
0
3
splunkreal
Hello, is it possible to map role to users but not to the whole AD group, without changing LDAP authentication for a...
by splunkreal Motivator in Security 03-01-2017
0 2
0
2
simona2
Hi All, I was wondering if there are any built-in variables or methods for the host name which the search head runs ...
by simona2 New Member in Security 02-24-2017
0 4
0
4
hartfoml
I have a role that has access to apps and indexes and I want the searches created by these users to be able to be cha...
by hartfoml Motivator in Security 02-23-2017
1 4
1
4
Get Updates on the Splunk Community!

Splunk and TLS: It doesn't have to be too hard

Overview Creating a TLS cert for Splunk usage is pretty much standard openssl.  To make life better, use an ...

Faster Insights with AI, Streamlined Cloud-Native Operations, and More New Lantern ...

Splunk Lantern is a Splunk customer success center that provides practical guidance from Splunk experts on key ...

Splunk Enterprise Security: Your Command Center for PCI DSS Compliance

Every security professional knows the drill. The PCI DSS audit is approaching, and suddenly everyone's asking ...