Security

Community Activity

How to change credentials stored in passwords.conf? Hi, Firstly, I created a setup.xml following the link: http://docs.splunk.com/Documentation/Splunk/6.4.1/AdvancedDe... by savithamr Path Finder in Security 02-01-2024 1 3	1	3
What password encryption scheme does DB Connect App uses for encrypting database passwords? What password encryption scheme does DB Connect App uses for encrypting database passwords? by rsimmons Splunk Employee in Security 01-31-2024 1 9	1	9
Windows Performance Monitor Logs Hello,I have a windows machine with UF installed on that machine. How can I configure my Universal forwarder to inges... by SplunkDash Motivator in Security 01-30-2024 0 5	0	5
migrate to auth0 for SAML friendly username instead of user_id I am migrating to using auth0 for SAML which authenticates with active directory for splunk. Currenlty splunk just us... by klim Path Finder in Security 01-29-2024 0 2	0	2
Google Workspace Hello Every Body. I'm starting this question be couse i'm traying to genrate detections for goole workspace invader a... by cbarrios New Member in Security 01-28-2024 0 1	0	1
How to change the username when migrating to saml authentication I am switching from local auth to saml authentication and when logging in, the username is now a random string. How d... by klim Path Finder in Security 01-27-2024 0 1	0	1
OpenSSL installed is prior to 1.0.2zf I have this vulnerability on all our instances on the last version of splunkforwarderThe version of OpenSSL installed... by giangi181128 New Member in Security 01-26-2024 0 2	0	2
how to implement external data authorisation I have a use-case where a Splunk end-user should only be allowed to search on a subset of events in an index. For exa... by eriklund New Member in Security 01-25-2024 0 4	0	4
srcFilter by metrics index and host OR lookup value Hello there,we use search filters on our role management concept.It works fine but we got stuck on the following prob... by dimasfs Explorer in Security 01-22-2024 0 2	0	2
Add icons to xml dashboard and change the icon based on the count I have an requirement to add icons to the xml dashboard and need to change the icon based on the result. Something l... by karthi25 Path Finder in Security 01-18-2024 0 3	0	3
Mission Control incidents We are due to go line on the following Monday and we wanted to erase all of our Test mission control incidents so we ... by faizalk786 New Member in Security 01-18-2024 0 0	0	0
SAML response from ADFS Hi all,we are trying to configure Splunk on premise (7.3.6) to work with SAML and ADFS but we are stuck with some err... by llopreiato Explorer in Security 01-11-2024 0 2	0	2
Help on correlation search scheduling HiI have to create correlation searches in Splunk ESMy cron schedule will be /60***Is it better to use a real-time ... by jip31 Motivator in Security 01-10-2024 0 2	0	2
Splunk TA won't download data from cloud server since SSL decryption -- how to "trust" the firewall cert? On Splunk Enterprise 9.0.4, we are using the Proofpoint Isolation TA to download Isolation data into Splunk from the ... by NathanDLee Observer in Security 01-09-2024 0 0	0	0
Issue with Splunk server not starting after configuring TLS Subject: Issue with Splunk server not starting after configuring TLSDescription:I'm encountering an issue with my Sp... by ArgyTheo New Member in Security 01-09-2024 0 1	0	1
Can't download splunk enterprise Security Hi,When trying to download the enterprise security app, I'm getting the following comment:"This app restricts downloa... by eilonh New Member in Security 01-08-2024 0 3	0	3
Universal Forwarder How do I remediate this vulnerability?Tenable 164078 Upgrade Splunk Enterprise or Universal Forwarder to version 9.0 ... by steve32507 Observer in Security 01-05-2024 0 9	0	9
BAD REQUEST on loginType=splunk and SAML authentication Hi all,this is my scenario:Splunk Enterprise (8.0.5) installed on Premis on Linux ServerSAML Authentication (that wor... by giorgiovolpini New Member in Security 12-29-2023 0 1	0	1
Splunk Exam Results - Splunk Certified User 6.x Online Exam 0517 Hi, I've successfully completed "Splunk certified user" exam and i received mail saying to download certification and... by surajgupta New Member in Security 12-28-2023 0 7	0	7
Splunk does not auto start (boot-start) I installed Splunk in RHEL 8.9. I set it up to boot-start, however, splunk does not automatically run after reboot. I... by hvazquez Engager in Security 12-27-2023 0 3	0	3
SSL Certification Verified Fail - Self signed certificate in certificate chain We are adding zscaler proxy to be used by Splunk TA o365. Our security group is providing a Root CA 4 pem file for u... by brdr Contributor in Security 12-21-2023 0 5	0	5
sending a tcp packet as splunk soar action In a part of splunk soar (phantom) playbook I would like, in some cases, to send a syslog msg to a remote syslog serv... by yossisplunk New Member in Security 12-21-2023 0 1	0	1
I want to validate patch work done on windows side how do I verify if all our system are patch? is It possible to do in Splunk. and What type of logs I need to have in Splunk? by abi2023 Path Finder in Security 12-20-2023 0 1	0	1
error:321 - Masking the original 404 message: 'The path was not found.' with 'Page not found!' for security reasons in s Hi Team, We have dashboard setup which has button, on clicking that button it try to execute the function of a python... by rahulbhatia Path Finder in Security 12-19-2023 1 2	1	2
Field Extraction with transforms configuration Hello,I have issues getting expected field value pairs using following props and transforms configuration files. Samp... by SplunkDash Motivator in Security 12-18-2023 0 2	0	2