Security

Start a Conversation

Discussions

Start a Conversation

Thread Info

Unable to update apps via "install app from file" or "update"

Hi, I am trying to update a app in our splunk environment, when i click on "install app from file" it gives a 5...

by Path Finder in

Monitor TCP port 80 in a PC (HOME)

I am new to Splunk and I am going to create data input of monitoring TCP packet to/from my laptop I have already in...

by New Member in

server.conf crossOriginSharingPolicy url format

I'm trying to set up some HTTP Origins for which to return Access-Control-Allow-* (CORS) headers. According to the Sp...

by Communicator in

Receiving Data on Splunk Server

I am unable to receive data from the forwarder to the server However I have added the server on server I got ...

by Loves-to-Learn in

Disable URL https://splunk:port/en-US/account/login?loginType=splunk

Is there a way to allow the Splunk login only for the authtype!=Splunk. I know that I have to specify authtype=SAML o...

by Engager in

updating Linux OS version will not affect Splunk operations

Greetings!! Updating Linux OS version(Centos) will not affect Splunk operations? I want to update my OS to the...

by Communicator in

Retention period in GUI?

Hello, I am novice at best when it comes to Splunk administration. Running Splunk Enterprise through AWS on a Linux i...

by New Member in

Setup SSL from UF to both Indexer and Deployment Server

Hi , I need to setup SSL for all my UF communicate securely both with my indexer and deployment server. I ha...

by Explorer in

Disable Management port on Universal Forwarder

I've seen a few older posts on this, so I thought I might try and get a more recent answer. There are situations i...

by Influencer in

Why am I getting the following error logging into Splunk? "500 Internal Server Error ResponseNotReady"

Could someone give me solution for the problem. When i am trying to login into splunk showing below message in pag...

by Engager in

Browse More Apps: not a valid option(s) for version

Dear Splunk community, I am having problems browsing for more apps in my Splunk installation as I am receiving the ...

by New Member in

SAML Integration issue

Hi, we tried to integrate our splunk Search head with SAML authentication, but we got the error of saml response do...

by Explorer in

Outbound connections required by splunk

Doing some hardening on my splunk and would like to block any outgoing connections not required. Besides DNS as far...

by Observer in

Enterprise Security -> Customizing Incident Review -> Adding Short ID

I'm wanting to add the short ID that one can generate for a notable in IR. To the columns in Inciden...

by Explorer in

Adding Enterprise Security Identity data to a Splunk result set

I have a really simple query that I'd like to join with Enterprise Security's Identity data. In this case, simply g...

by Explorer in

Not able to configure splunk sso because the Host IP is not 127.0.0.1

Hello, I'm trying to configure splunk sso, but it fails because the splunk web host IP is not 127.0.0.1 and so does...

by Observer in

Update to profile - email address

I know it's not possible to change a username, but how about the email address associated to a user account? The doma...

by Engager in

HTTP 401 -- Unauthorized - API connection error after some requests

I have an error in authentication in the API, I do some authentications successfully, but then it gives an error HTTP...

by Observer in

Using Enterprise Security Identity Lookup Fields In SPL Query

I have a really simple query that I'd like to join with Enterprise Security's Identity inputlookup and grab a field f...

by Explorer in

Does any Splunk champ has guidelines on how to prepare a DR & backup plan for Splunk Enterprise & ES?

Need steps , guidelines or templates to start writing a Disaster Recovery & backup procedures for Splunk enterprise &...

by Builder in

Top Labels

access control 90
audit 43
authentication 109
encryption 40
LDAP 34
login 60
other 182
permissions 69
SAML 28
SSL 86
SSO 28

*NEW* Splunk Love Promo!
Snag a $25 Visa Gift Card for Giving Your Review!

It's another Splunk Love Special! For a limited time, you can review one of our select Splunk products through Gartner Peer Insights and receive a $25 Visa gift card!

Review:
SOAR (f.k.a. Phantom) >>
Enterprise Security >>
Splunk Enterprise or Cloud for Security >>
Observability >>

Or Learn More in Our Blog >>

Security

Discussions

Unable to update apps via "install app from file" or "update"

Monitor TCP port 80 in a PC (HOME)

server.conf crossOriginSharingPolicy url format

Receiving Data on Splunk Server

Disable URL https://splunk:port/en-US/account/login?loginType=splunk

updating Linux OS version will not affect Splunk operations

Retention period in GUI?

Setup SSL from UF to both Indexer and Deployment Server

Disable Management port on Universal Forwarder

Why am I getting the following error logging into Splunk? "500 Internal Server Error ResponseNotReady"

Browse More Apps: not a valid option(s) for version

SAML Integration issue

Outbound connections required by splunk

Enterprise Security -> Customizing Incident Review -> Adding Short ID

Adding Enterprise Security Identity data to a Splunk result set

Not able to configure splunk sso because the Host IP is not 127.0.0.1

Update to profile - email address

HTTP 401 -- Unauthorized - API connection error after some requests

Using Enterprise Security Identity Lookup Fields In SPL Query

Does any Splunk champ has guidelines on how to prepare a DR & backup plan for Splunk Enterprise & ES?

Why is InfoSec App Not Displaying Correct Active D...

Security Essentials Accelerated DataModel- App tel...

Splunk on call slack permissions

How to whitelist the list of hosts from all the al...

How to Whitelist chocolatey installer under Powers...