Security

Discussions

Thread Info

Permissions to delete searches in Splunk 6.1.1

Recently we upgraded to 6.1.1 and I've noticed that users with admin access no longer can delete searches. What permi...

by Path Finder in

Audit windows group policy change

Hey all, a bit Microsoft question.... We do want to monitor windows Group Policy changes in our Domain. We have i...

by Explorer in

Splunk Heavy Forwarder and Java

I have a request that the version of Java on the HFs need to be updated, or have Java removed. Is Java needed to th...

by Engager in

Mikrotik APP and ES

Hi for getting mikrotik logs in splunk i use mikrotik app.i have a problem with show mikrotik events in splunk Ente...

by New Member in

Splunk vulnerabilities

Hello, till few weeks ago we were using site https://www.splunk.com/page/securityportal to check for Splunk vulnera...

by Observer in

Excessive Failed login alert Investigation.

How will i use Splunk to investigate an Excessive Failed login alert and what are things to look for?Thanks,

by Explorer in

Create saved search via javascript, for user that does not have saved search create rights

Our app has a functionality where users can create alerts for specific events. Unfortunately the users do not...

by Communicator in

configure CA issued certificate on splunkd port 8089 and web port 8443 on SH cluster

We have a requirement to configure splunk with the CA issued certificates. We are running Splunk 8.2.2.1. In test...

by Explorer in

Splunk Cloud rest dispatch_rest_to_indexers

Hi. I am trying to run this in splunk cloud: |rest /services/search/jobs|search isRealTimeSearch=1 But getting ...

by Path Finder in

Adding drilldown to a notable/Alert

Hey.I'm trying to add the "Drilldown" and "Contributing Events" to our Splunk notables.I have added to this parameter...

by New Member in

Port Documentation

We have a standalone install which has to follow specific guidance and documentation. Without getting much into thing...

by Explorer in

Search to detect XSS attacks

Hello, I have made a search/query to detect the attacks of XSS the problem I have is that it also shows valid reque...

by New Member in

Is there a way to audit who has modified the searchable retention period for the various indexes in Splunk cloud

We found that the searchable events for our wineventlog only goes back about 4 months but the searchable retention i...

by Loves-to-Learn Everything in

Splunk SSO for Login UI

Hi, This is request you to kindly provide us the configuration for Splunk login UI SSO to authenticate with Goo...

by Observer in

Why is the Splunk user session timeout is not working?

Hi, I have set the below in web.conf to set the user timeout session to 20 min but it's not working, any idea whe...

by Path Finder in

How to reset password for Splunk Cloud Sandbox Trial

Whoops, I accidentally lost the admin password to the Splunk Cloud Free Sandbox that I'm trying out. Doh! I don't ...

by Engager in

Admission rules - rogues gallery of bad SPL

Admission rules are cool but it would be great to know which ones people are using. It would also be great if the pla...

by Path Finder in

How to add SSO in helm chart of splunk

How to add SSO in helm chart of splunk through config map #helm #kubernetes #splunkhelm

by Engager in

Can't log in on command line

I'm able to log in to the web interface and I'm a splunk admin. But when I try to log in on the command line I get a ...

by Path Finder in

Log in

I created my Splunk instance and created a username/password. I am unable to log in to Splunk. HELP:(

by New Member in

Top Labels

access control 111
audit 54
authentication 141
encryption 51
LDAP 37
login 78
other 264
permissions 86
SAML 41
SSL 117
SSO 36

Get Updates on the Splunk Community!

Security

Discussions

Permissions to delete searches in Splunk 6.1.1

Audit windows group policy change

Splunk Heavy Forwarder and Java

Mikrotik APP and ES

Splunk vulnerabilities

Excessive Failed login alert Investigation.

Create saved search via javascript, for user that does not have saved search create rights

configure CA issued certificate on splunkd port 8089 and web port 8443 on SH cluster

Splunk Cloud rest dispatch_rest_to_indexers

Adding drilldown to a notable/Alert

Port Documentation

Search to detect XSS attacks

Is there a way to audit who has modified the searchable retention period for the various indexes in Splunk cloud

Splunk SSO for Login UI

Why is the Splunk user session timeout is not working?

How to reset password for Splunk Cloud Sandbox Trial

Admission rules - rogues gallery of bad SPL

How to add SSO in helm chart of splunk

Can't log in on command line

Log in

Platform Newsletter Highlights | March 2023

Enterprise Security Content Updates (ESCU) - New Releases

Thought Leaders are Validating Your Hard Work and Training Rigor

SSL Certificate invalid: How to send data from sal...

Is it possible to create a role, that cannot execu...

Scanning Splunk data for secret leaking?

Using SSL with connection between forwarders and A...

No auto-close when editing events in Splunk ES Inc...