Security

Community Activity

DB2 z/OS Auditing using Splunk ... Hi ,I was wondering what features does Splunk offer in auditing workload in DB2 z/OS.We are looking to audit a bunch ... by pchanons1 New Member in Security 02-26-2024 0 0	0	0
python-werkzeug CVE-2023-25577 Do any versions of splunk and splunk products utilize python-werkzeug? by simoom Explorer in Security 02-23-2024 0 2	0	2
Authenticate to REST API through LDAP or SAML? Hi, Is there a way to authenticate to the API through LDAP or SAML? right now, the only way I can authenticate is by... by sjcoluccio67 Explorer in Security 02-22-2024 0 7	0	7
How to start to create new usecase Hi Mentors,I have searched in youtube, external sources to check for usecase creation. i could see by using splunk es... by Jana42855 Explorer in Security 02-21-2024 0 6	0	6
CIM mapping tags forMicrosoft Graph Security Hello, looks like Microsoft Graph Security add all tags to all event type so its not correctly CIM mapped , any one f... by Splunk_rocks Path Finder in Security 02-19-2024 0 0	0	0
Send mail KO Hello all,I have a problem with my configuration smtp.When I send e-mail I get this error :2024-02-14 16:44:15,213 +0... by psecure Explorer in Security 02-14-2024 1 0	1	0
LDAP authentication with managed service accounts We currently use a User service account to bind with Splunk for LDAP authorization.Is there a way to use Active Direc... by kenoski Path Finder in Security 02-13-2024 0 0	0	0
Regenerate SSL certification on Splunk Hello Everyone, Previous my splunk instance has the SSL certification but unfortunately it got expired two days back... by snehalk Communicator in Security 02-12-2024 0 3	0	3
Enterprise Security in Splunk Cloud Enterprise security is not available in Splunk cloud trial version. I need assistance for it. by shrinathkumbhar Observer in Security 02-05-2024 0 4	0	4
Searchhead not able to communicate (tcp handshake with indexer on port 9997) just showing SYn packets captured hi, i am setting up a search head/indexer setup. i have port 9997 listening on indexer, i configured searchhead to se... by thaghost99 Path Finder in Security 02-05-2024 0 2	0	2
Encrypting traffic between universal forwarder and indexer I would like to start encrypting traffic between the universal forwarder on my Windows devices and my single Splunk 9... by snix Communicator in Security 02-04-2024 0 2	0	2
Redis security requirepass My company flagged redis being vulnerable to security because requirepass is not enabled. How do I enable it and give... by weicc84 Explorer in Security 02-01-2024 0 4	0	4
How to change credentials stored in passwords.conf? Hi, Firstly, I created a setup.xml following the link: http://docs.splunk.com/Documentation/Splunk/6.4.1/AdvancedDe... by savithamr Path Finder in Security 02-01-2024 1 3	1	3
What password encryption scheme does DB Connect App uses for encrypting database passwords? What password encryption scheme does DB Connect App uses for encrypting database passwords? by rsimmons Splunk Employee in Security 01-31-2024 1 9	1	9
Windows Performance Monitor Logs Hello,I have a windows machine with UF installed on that machine. How can I configure my Universal forwarder to inges... by SplunkDash Motivator in Security 01-30-2024 0 5	0	5
migrate to auth0 for SAML friendly username instead of user_id I am migrating to using auth0 for SAML which authenticates with active directory for splunk. Currenlty splunk just us... by klim Path Finder in Security 01-29-2024 0 2	0	2
Google Workspace Hello Every Body. I'm starting this question be couse i'm traying to genrate detections for goole workspace invader a... by cbarrios New Member in Security 01-28-2024 0 1	0	1
How to change the username when migrating to saml authentication I am switching from local auth to saml authentication and when logging in, the username is now a random string. How d... by klim Path Finder in Security 01-27-2024 0 1	0	1
OpenSSL installed is prior to 1.0.2zf I have this vulnerability on all our instances on the last version of splunkforwarderThe version of OpenSSL installed... by giangi181128 New Member in Security 01-26-2024 0 2	0	2
how to implement external data authorisation I have a use-case where a Splunk end-user should only be allowed to search on a subset of events in an index. For exa... by eriklund New Member in Security 01-25-2024 0 4	0	4
srcFilter by metrics index and host OR lookup value Hello there,we use search filters on our role management concept.It works fine but we got stuck on the following prob... by dimasfs Explorer in Security 01-22-2024 0 2	0	2
Add icons to xml dashboard and change the icon based on the count I have an requirement to add icons to the xml dashboard and need to change the icon based on the result. Something l... by karthi25 Path Finder in Security 01-18-2024 0 3	0	3
Mission Control incidents We are due to go line on the following Monday and we wanted to erase all of our Test mission control incidents so we ... by faizalk786 New Member in Security 01-18-2024 0 0	0	0
SAML response from ADFS Hi all,we are trying to configure Splunk on premise (7.3.6) to work with SAML and ADFS but we are stuck with some err... by llopreiato Explorer in Security 01-11-2024 0 2	0	2
Help on correlation search scheduling HiI have to create correlation searches in Splunk ESMy cron schedule will be /60***Is it better to use a real-time ... by jip31 Motivator in Security 01-10-2024 0 2	0	2