Security

Community Activity

Is SELinux officially supported for Splunk Enterprise? Hello, Is SELinux officially supported for Splunk Enterprise ? If yes, could you share instructions for 6.5.4 or 6.6.... by attilatar Explorer in Security 05-30-2022 0 5	0	5
How to set maintenance mode for indexer cluster with hashed password? Hi all I am having issues trying to script enabling and disabling maintenance mode with a hashed password. The comman... by leonaheidern2 Loves-to-Learn Everything in Security 05-27-2022 0 5	0	5
How to do email Domain Change? My company was acquired, we just migrated email domains, but need to update all user's email addresses so they can us... by twoods450 New Member in Security 05-26-2022 0 2	0	2
Why am I unable to access Splunk web from different country? I created AWS EC2 instance and installed Splunk Enterprise on that. Opened all rules for port 8000 and 8089. I can op... by splunkn Communicator in Security 05-26-2022 0 1	0	1
CentOS EOL problem-Will Splunk support after upgrade? Hello, we are planning to Upgrade from verison 8.0.1 to 8.26 (the latest version), but we see that CentOS reaches End... by ERMIRA Engager in Security 05-26-2022 0 1	0	1
How to Display whether a user has access to an index Hi! We are using a dashboard that displays all the indexes and information about those indexes. I would like to have ... by SevenDos Explorer in Security 05-24-2022 0 2	0	2
How to restrict user access to specific fields in index Hi, I am currently running Splunk 8.1.9 Is it possible to create a role, that will allow a user to access only speci... by madcow Loves-to-Learn Lots in Security 05-18-2022 0 4	0	4
Why is InfoSec App Not Displaying Correct Active Directory Info? I am currently monitoring AD account data using InfoSec. However, the number of accounts under the "Compliance" tab a... by dvincent13 New Member in Security 05-17-2022 0 0	0	0
Security Essentials Accelerated DataModel- App tells me that there isn't the accelerated "Change" Data Model Hi at all, I'm trying to implement some Use Cases from Security Essentials App, using AWS data. I found the following... by gcusello SplunkTrust in Security 05-16-2022 0 0	0	0
¿Por qué los secretos están enmascarados en Jenkins y no en Splunk? ¿Por qué los secretos están enmascarados en Jenkins y no en Splunk? En los logs de jenkins utilizando withcredentials... by wueyca Observer in Security 05-10-2022 0 1	0	1
What capabilities are needed for a non-admin user to update Server Classes and Clients in Settings -> Forwarder Management We've got a special role for non-admin security team members and I'd like some of them to be able to use Forwarder Ma... by wrangler2x Motivator in Security 05-06-2022 0 7	0	7
Why the error when subscribing to our RSS feed for Splunk Product Security announcements? Hi, I am trying to subscribe to the RSS feed for Splunk Product Security announcements on https://www.splunk.com/en_u... by RyanOng Engager in Security 05-04-2022 0 2	0	2
CrowdStrike Add-on stops with Error Our CrowdStrike Add-on stopped pulling logs via the API giving this error 2021-05-01 19:03:31,879 ERROR pid=31672 t... by guarisma Contributor in Security 05-04-2022 0 3	0	3
Is Splunk UF vulnerable to SVD-2022-0502 ?? The advisory (https://www.splunk.com/en_us/product-security/announcements/svd-2022-0502.html) talks about Splunk Ente... by gordo32 Communicator in Security 05-03-2022 0 1	0	1
How to ingest Untangle logs (NG Firewall) into Splunk? Greetings, For a long time, I have wanted to ingest untangle logs (Firewall, IDS/IPS, OpenVpn, and Web Filtering) i... by bborodach Engager in Security 05-03-2022 1 2	1	2
Splunk on call slack permissions Hi all, I would like to configure the splunk on call slack add on but when an admin wanted to approve the integration... by johnrogers New Member in Security 04-29-2022 0 0	0	0
How to identify each Active Directory Service Accounts that are being used for authentication? I need to identify each Active Directory Service Accounts that are being used for authentication for my work group. I... by znc2 Engager in Security 04-27-2022 0 3	0	3
How to whitelist the list of hosts from all the alerts ? Hello All !,Kindly help me to find a solution for this.I need to whitelist the list of hosts ( the host count is >12... by sathyag New Member in Security 04-26-2022 0 0	0	0
Problem Starting Splunkweb I'm having problems getting Splunk to run on Ubuntu Server. I've followed the installation instructions here for the ... by raidercom Communicator in Security 04-22-2022 0 7	0	7
How to expand "Results per Page" dropdown? WITH ANSWER! This is both a question AND an answer. I want to see more than 50 lines of output on a results page? How do I do th... by dpaper Explorer in Security 04-19-2022 2 13	2	13
How to Whitelist chocolatey installer under Powershell_DownloadString? There are a lot of security alerts for "Powershell DownloadString" for Chocolatey installer. Is there a way to whitel... by Xolo123 New Member in Security 04-18-2022 0 0	0	0
Why did Login failed when adding splunk universal forwarder? Hi All,I am trying to install splunk universal forwarder. While adding the forwarder its asking for admin. username a... by Poojitha Communicator in Security 04-16-2022 0 2	0	2
Splunk query leveraging TA-user-agents runs extremely long I have version 1.76 of the TA-user-agents app installed on my search head for use with searching against web access l... by beetlegeuse Path Finder in Security 04-14-2022 0 1	0	1
How to link SID to Security ID Hello all, I'm looking for a way to link a SID string, which looks like this: S-1-5-21-3623811015-3361044348-303008... by BlackZao Explorer in Security 04-14-2022 0 3	0	3
How to mask Password in Splunk Cloud? We have passwords in clear text for ms-Mcs-AdmPwd in Splunk. So, want to mask the password in Splunk.As we are using ... by bsuresh1 Path Finder in Security 04-13-2022 0 2	0	2