Security

Community Activity

disabled user activity Hello I'm looking for suggestions on a rule for : showing activity from a disabled user account. The following rule... by 108246 New Member in Security 05-14-2014 0 2	0	2
user role and permission We have multiple department and its data indexed into splunk indexer, how can we define roles / permission to access ... by dhavamanis Builder in Security 05-12-2014 0 5	0	5
Issues in 6.1 with free Splunk admin access I can see that folks have already flagged up that the free Splunk 6.1 has some serious issues accessing admin pages. ... by smackie Engager in Security 05-08-2014 1 2	1	2
Conccurent users using splunk web Hi - fairly new to Splunk an have a specific report my customer wants to monitor/report on. They want to understand ... by shobbit Explorer in Security 05-06-2014 0 8	0	8
Changing saved search permissions via CLI Hi Splunkers, I would like to ask is it possible to change saved search permissions (private -> app) using a command... by crt89 Communicator in Security 05-04-2014 1 1	1	1
Temporary user access I have a team of users who only need brief access to my splunk environment. Is there a way to take either a user or... by tmarlette Motivator in Security 05-03-2014 0 1	0	1
Roles Permission on Several Apps and Dashboards I have several apps and dashboards that i need to add a group/role to. this will take a long time through the WEB GU... by hartfoml Motivator in Security 04-29-2014 1 3	1	3
Prevent access to Splunk Web GUI Is there a way to prevent users from accessesing Splunk Web, while still retaining the ability to run searches? I am... by jamesklassen Path Finder in Security 04-29-2014 0 7	0	7
Splunkweb Certificate Error Hi, I have added the following in web.conf privKeyPath = etc/auth/splunkweb/privatekey.key caCertPath = etc/auth/sp... by ncbshiva Communicator in Security 04-28-2014 0 4	0	4
Cisco Security Suite visualization issue Hello all, I am collecting Cisco IronPort WSA events on Splunk 6. The events got indexed at Splunk, and can be visu... by wdeoliveira_spl Splunk Employee in Security 04-28-2014 0 1	0	1
what're the username and password in the splunk 2013 app in IOS I've install the splunk 2013 app in appstore,but I can not login with my password in splunk.com. what're the username... by perlish Communicator in Security 04-27-2014 0 2	0	2
dns-zoneinfo.ps1" Get-WmiObject : Generic failure Error on Universal Forwader with DNS and DC TA's Issue : On the Domain Controller, customer have the Universal Forwarder with the TA installed for the DNS and DC. Th... by rbal_splunk Splunk Employee in Security 04-25-2014 0 1	0	1
Disable SSL Communication I was wondering the best way to disable SSL communications between my forwarder and Splunk instance. My certificates ... by cuppma Explorer in Security 04-24-2014 1 1	1	1
dbmon permissions issue Ever since upgrading splunk DB connect to a version that supports the dbx_user role I've been working out odd permiss... by mjones414 Contributor in Security 04-23-2014 0 3	0	3
splunk web service down? Hi I have a two indexer and one search header. Licence is 200GB. splunk version is 4.3.2. OS is RedHat 5.5 Ent. CPU ... by khyoung7410 Communicator in Security 04-23-2014 0 8	0	8
Read messages from Active MQ Topic Hi, I am trying to configure JMS Modular App to read messages from ActiveMQ Topic. MQ runs locally on the machine an... by ManishaAgrawal Explorer in Security 04-23-2014 0 1	0	1
How splunk can data encryption Hi. I am know that splunk can't encrypt the data. Can I meet need of customer's data encryption? by kbluech Engager in Security 04-21-2014 0 1	0	1
Splunk behind reverse proxy keeps redirecting me to 127.0.0.1 Hi all, I've place splunkweb behind a reverse proxy and bound splunkweb and splunkd to 127.0.0.1. The config: splun... by Simon Contributor in Security 04-18-2014 1 5	1	5
Get the list of Users from the below message in a Log file In the below log file: the users are JACK, ROGER I used something like this: source="/var/log/splunk/splunkcloud/" m... by webnair Explorer in Security 04-17-2014 0 3	0	3
SSO redirects to localhost on 303s We are attempting to configure SSO on our instance of Splunk to allow users to enter the Splunk app through our own p... by redc Builder in Security 04-16-2014 0 1	0	1
Splunk user access Hello Everyone, I have a situation , I have one app which has 10 dashboards, out of these 10 dashboards 5 are for Fi... by vikas_gopal Builder in Security 04-16-2014 0 2	0	2
First login not over the web How can I login for the first time in an isolated network after installing Splunk? CLI ? How? Thanks by tunguyen New Member in Security 04-14-2014 0 2	0	2
Heartbleed/openssl and Splunk Seeing as Splunk is deployed with its own bundled openssl binary and libs, and seeing as compromise of the issue (CVE... by grijhwani Motivator in Security 04-11-2014 7 11	7	11
Differences in splunk documentation Hi, We use splunk's scripted authentication mechanism in our product. Initially we set the cachetiming to 1s. Since ... by strive Influencer in Security 04-11-2014 2 2	2	2
Splunk Java Api connect with SSO I have to create a java application that can fetch results from splunk searches. I am able to do it easily with my lo... by pranay036 Engager in Security 04-11-2014 1 1	1	1