Security

Discussions

Thread Info

How to find out user device details ?

Excuse my knowledge with Splunk how do track user device details Mobile ( Device model , OS version ) Browser ( ...

by Path Finder in

Splunk systemd unit file in versions 7.2.2 and newer - how do I stop this prompting for the root password? (Q&A)

As per the various other systemd related answers posts: Is there a systemd unit file for Splunk? Is there a systemd u...

by SplunkTrust in

Does Splunk Cloud 8.0.x.x support two factor authentication?

Does Splunk Cloud 8.0.x.x support two factor authentication? If so, what are the options? Is there a way to acce...

by New Member in

Splunk with SAML authentication

Hi, I am configuring Splunk access control with SAML onelogin and I have uploaded the onelogin IdP meta data file ...

by Path Finder in

permission on knowledge object

Hello, Normal users should see a subset of a field extraction, small set of higher privilled users should be able t...

by New Member in

API

Hi Everyone!I don't understand, if use SAML authentication I don't access API !?I keep getting 404. For any request t...

by New Member in

Logging Out of Splunk

Hello, I feel super dumb asking this question, but how does one log out of Splunk when there isn't an option unde...

by Communicator in

Users are able to see search results from index that they don't have permission

Hi, I am using Splunk Enterprise Version:8.0.1 I bunch of indexes and roles for users. I created a role that has ...

by Explorer in

How to find out user Log in & Log out for the application

Hi I tried the below SPL query which is not working , can anyone help me index=aws sourcetype=* earliest=-30d ...

by Path Finder in

AppInspect API error: "Do not use `default/setup.xml` in the Cloud environment"

I ran the latest Splunk's AppInspect API 2.1.0 using the Postman for the Splunk app we are developing. We have a setu...

by Explorer in

Splunk Enterprise ready for using Smart-TV Browsers as displaying device?

Hi Splunkers, this request comes from a Customer but I couldn't find an answer. His Idea was to use just a bunch o...

by Communicator in

Error in 'script': Getinfo probe failed for external search command 'predict'.

Why i am getting "Error in 'script': Getinfo probe failed for external search command 'predict'. " error while execut...

by Loves-to-Learn Lots in

Checking if device is communication with Splunk given IP or hostname

I am very new to Splunk administration. Would anyone help me with a simple search to check if a particular device is ...

by Explorer in

What is the 'edit_http_ops' setting and how does it regulate account privileges (re: irregular API ingestion issues)?

The "edit_http_ops" addition to permission settings was recommended to help with irregular API ingestion issues. I...

by New Member in

Fortinet com model action field

Hello, I need to correlate forti_action to action field according to cim model . Some values are missing : Exampl...

by New Member in

Fortigate VPN User Statistics

Hi can y help me to create research for fortigate VPN User? statistics witch user, duration vpn and total gb de...

by Loves-to-Learn Lots in

Splunk Enterprise: Can I generate an API Access token from IDp (Okta)?

I have Splunk Enterprise setup with SSO enabled with Okta. Provisioning of users is also done by Okta. I want to gene...

by New Member in

ES notable index empty resulting empty notable dashboards

We are unable to see our notable events when correlation search criteria met. Upon investigation, found out that nota...

by Explorer in

splunk won't start with error Warning: cannot create "/opt/splunk/etc/licenses/enterprise"

Hi I have splunk installed and can access everything in the terminal. I got to the ./splunk start part, and after rea...

by Engager in

Is there a way to use splunk.secret on the server to encrypt all files that look like sslPasswords?

So the Deployment Sever's job is to hold a bunch of apps, some of which contain outputs.conf to send to Deployment Cl...

by Path Finder in

Top Labels

access control 99
audit 43
authentication 120
encryption 42
LDAP 36
login 68
Other 206
permissions 76
SAML 32
SSL 94
SSO 32

Get Updates on the Splunk Community!

Security

Discussions

How to find out user device details ?

Splunk systemd unit file in versions 7.2.2 and newer - how do I stop this prompting for the root password? (Q&A)

Does Splunk Cloud 8.0.x.x support two factor authentication?

Splunk with SAML authentication

permission on knowledge object

API

Logging Out of Splunk

Users are able to see search results from index that they don't have permission

How to find out user Log in & Log out for the application

AppInspect API error: "Do not use `default/setup.xml` in the Cloud environment"

Splunk Enterprise ready for using Smart-TV Browsers as displaying device?

Error in 'script': Getinfo probe failed for external search command 'predict'.

Checking if device is communication with Splunk given IP or hostname

What is the 'edit_http_ops' setting and how does it regulate account privileges (re: irregular API ingestion issues)?

Fortinet com model action field

Fortigate VPN User Statistics

Splunk Enterprise: Can I generate an API Access token from IDp (Okta)?

ES notable index empty resulting empty notable dashboards

splunk won't start with error Warning: cannot create "/opt/splunk/etc/licenses/enterprise"

Is there a way to use splunk.secret on the server to encrypt all files that look like sslPasswords?

Introducing Ingest Actions: Filter, Mask, Route, Repeat

Splunk Forwarders and Forced Time Based Load Balancing

NEW! Log Views in Splunk Observability Dashboards Gives Context From a Single Page

SAML IDP certificate has expired, but users can st...

Why does VA scan identify that Splunk uses default...

Why is X509 certificate default using warning?

How to verify a secure connection between the depl...

Is Splunk Enterprise vulnerable CVE-2022-33891 and...