Security

Community Activity

New Splunk Web Installation Not Showing Login Fields I have just installed Splunk for the first time using the Linux RPM (splunk-5.0.3-163460-linux-2.6-x86_64.rpm). Ever... by findtopher Engager in Security 10-03-2013 2 2	2	2
What search syntax to search for VPN log history of specific user? What search syntax to search for VPN log history of specific user? by rhazzaguilar New Member in Security 10-01-2013 0 3	0	3
DBConnect with Oracle Error Oracle database connection issue. Encountered the following error while trying to update: In handler 'databases': Er... by nandipatisunil Path Finder in Security 10-01-2013 0 2	0	2
Log in/out of splunk Hello, I have just installed Splunk with a Free license. It appears to automatically log me in, and doesn't prompt ... by Krishopper New Member in Security 10-01-2013 0 3	0	3
Is there a walk through on how to deploy authentication.conf I want to use my deployment server to distribute the authentication.conf file but that leaves an unencrypted password... by stemo76 Explorer in Security 09-27-2013 2 2	2	2
Use field from one source to query another source I am fairly new to Splunk and have had no formal training. I am having difficult time to take a field from one source... by mdacutanan New Member in Security 09-27-2013 0 2	0	2
How can I get the details about the queries run by user I want to know the details of the queries issued by users. index=_internal sourcetype="searches" This only gives me ... by pradeepkumarg Influencer in Security 09-26-2013 1 2	1	2
pdf server problem with wildcard ssl certificate We installed wildcard certificates on our search heads (*.company.com) issued by "Trusted Secure Certificate Authorit... by troywollenslege Path Finder in Security 09-25-2013 0 1	0	1
HowTo: Apache SSL webserver load balance to splunkweb servers? How do I configure Apache with SSL that will load balance the request to two splunkweb servers: Browser --> SSL -->... by mkelderm Path Finder in Security 09-24-2013 0 1	0	1
Restriction of free lisence According to the following URL, forwarder with free license can not forward data to third-party system. http://docs.... by dai1219 Explorer in Security 09-24-2013 0 1	0	1
How can I tell Splunk to use a HTTP_PROXY to phone home? After upgrading Splunk to v4.1.1, I've noticed that the Splunk server now "phone's home" over the Internet for some r... by mctester Communicator in Security 09-18-2013 1 3	1	3
SyntaxError: JSON.parse: unexpected character with Sampledata.zip from tutorial I'm following the tutorial and getting the following error when importing Sampledata.zip from http://docs.splunk.com/... by marcogallotta Explorer in Security 09-13-2013 3 2	3	2
Default app vs role indexes I have begun an investigation into best practices for default index configuration. So far I have found two options: ... by aholzer Motivator in Security 09-13-2013 1 3	1	3
Can i restrict users to use only one index from my indexer server ?? Hi .. I was doing the splunk Configuration for Security Appliances..Now my scenerio i have user SeachHead (SH) and ... by rakesh_498115 Motivator in Security 09-12-2013 0 7	0	7
SSO Debug URL throws 500 Internal Server Error Hello, This is a new setup that I'm trying to get SSO working for. We are currently on a trial license (will purchas... by jchapman_atomic Explorer in Security 09-12-2013 0 3	0	3
failed to add because: license is from the future; its active span has not begun yet Anyone of you expert guys have seen this error message before? I've got this after trying to insert a trial license... by wagnerbianchi Splunk Employee in Security 09-09-2013 0 6	0	6
Any relation with CVE-2000-0203? Hi! We had a question from our security department whether splunk v5.0.3 has any vulnerability for CVE-2000-0203. I... by yuwtennis Communicator in Security 09-08-2013 0 2	0	2
Identifying installed licenses I've got LOTS of license allocations. The Splunk License Manager interface shows a hash that's not contained in the l... by twinspop Influencer in Security 09-06-2013 0 1	0	1
authentication.conf multiple authType values I am wanting to set up multiple authentication types, both LDAP and scripted. I would thus need to somehow set multip... by phemmer Path Finder in Security 09-06-2013 0 2	0	2
Event types are not being applied to events for regular user account I've created 5 new eventtypes using our admin account and I can see all 5 of them when I perform a search. When I lo... by sephora_it Explorer in Security 08-28-2013 0 5	0	5
How can i block some user to see a specific log when all my indexes are on the same dir? Hi Everyone, My case is: I have my splunk in this structure: /data/splunk/hotwarm (all logs, from all hosts, stay ... by gkope Engager in Security 08-28-2013 0 1	0	1
Monitor Cyberoam 35iNG Hi All, How to configure splunk 5.0 to monitor Cyberoam 35iNG firewall. by nilesh8 New Member in Security 08-27-2013 0 9	0	9
Fail: Client is not authorized to perform requested action. The "Fail: Client is not authorized to perform requested action." message comes up when I am trying to access Manager... by drussell88 Explorer in Security 08-26-2013 0 1	0	1
SidType WMI Security Event log Hi All! Could you tell me what SidType field means in WMI Security Event log? eg. 01/17/2013 08:15:07 PM LogName=A... by dadamsci Engager in Security 08-26-2013 1 2	1	2
User with multiple splunk roles cannot search certain indexes AD user is assigned to role SPLNK_DNS which is working fine. User also needs to be part of other role called exchange... by splunkIT Splunk Employee in Security 08-20-2013 0 1	0	1