Security

Community Activity

Why is Security scan showing CVE-2018-11409 on Splunk 8.1.3? Hi all, A security scan on our Splunk server has thrown up CVE-2018-11409. I've verified thatwe are affected - I can... by ed_a Engager in Security 03-20-2025 1 3	1	3
"Connection was reset" when trying to make an API request using CURL Hi,I`m trying to make an API request from my local machine to our Splunk Cloud instance, without much success.Checked... by tomapatan Contributor in Security 03-19-2025 0 3	0	3
How do I bind Splunk to a specific interface? I want to Splunk to listen on a specific interface not 0.0.0.0. How do I do this? by matt Splunk Employee in Security 03-13-2025 8 8	8	8
SSL reload on indexer for renewed certs This document explains ssl_reload for all ports except 9998 - Data receiving port on indexerhttps://docs.splunk.com/D... by gpradeepkumarre Engager in Security 03-13-2025 0 1	0	1
Splunk Cloud SAML Auth Admins Unable to Edit User Roles Splunk Cloud had an update this past Sunday, 3 Mar 2025. Since then, admins are unable to change a user's role. Is th... by jbeach Explorer in Security 03-07-2025 0 5	0	5
Restrict user with write permission to dashboard Hi, I have a case where I was to restrict user from edit option and cloning the dashbaord.Currently we have 200+ dash... by vikashperiwal Path Finder in Security 03-03-2025 0 2	0	2
Active directory access for Splunk Hello Splunkers!!I want us to configure Active Directory in Splunk with LDAP. My Splunk server and domain controller... by uagraw01 Motivator in Security 03-03-2025 0 13	0	13
Search peer SSL config check- How to resolve these errors that popped up after upgrade? HI, I have a standalone server which is running on 9.0.0.1 version earlier. Now it got updated to latest version of 9... by gowthammahes Path Finder in Security 02-28-2025 2 18	2	18
Does Splunk have a problem with token authentication and SAML? Splunk seems to have a problem with authenticating a SAML user account using a token.The purpose of using token authe... by ww9rivers Contributor in Security 02-21-2025 0 4	0	4
Splunk remote query Hi, i want to move a file from a client into Deployment Server via Search Head. I was thinking of something like \| ma... by Bluekeeper Engager in Security 02-11-2025 0 2	0	2
A splunk query to fetch Admin activity inside splunk Hello everyone,I am planning to automate a process where we need to archive admin activity for splunk application.For... by Zorghost Loves-to-Learn in Security 02-11-2025 0 7	0	7
Questions about UF outputs.conf Configuration I am configuring TLS communication between UF (Universal Forwarder) and Indexer.My outputs.conf configuration is as f... by tt-nexteng Path Finder in Security 02-10-2025 0 7	0	7
Integrate MSSQL standard edition with Splunk We need to integrate MSSQL standard edition with splunk, so we tried sending logs to Windows Event Viewer application... by Nawab Communicator in Security 02-09-2025 0 5	0	5
Splunk Fw suddenly stopped We have an environment where Splunk UF sends logs to HF and mostly UFs are stuck even HF and indexers are up, we need... by Nawab Communicator in Security 02-09-2025 0 7	0	7
Exporting ticket information from Mission Control Is there a way to export the ticket information from mission control with the analyst notes, and resolution ? If it'... by maxime_simard New Member in Security 02-07-2025 0 2	0	2
How to Set up TLS Between a Universal Forwarder (UF) and an Indexer 1.This is $SPLUNK_HOME/etc/system/local/inputs.conf of my Indexer.[splunktcp-ssl:9997]disabled = 0[SSL]serverCert = /... by tt-nexteng Path Finder in Security 02-05-2025 0 13	0	13
how to send UF to on-perm and cloud We have currently configured to send the logs to splunk cloud also we are setting up a DR on-perm server, now the que... by narenpg Explorer in Security 02-03-2025 0 4	0	4
Setting requireClientCert = true in server.conf prevents the CLI from communicating with splunkd In server.conf.spec, it is indicated that requireClientCert = true can be set to require HTTPS clients connecting to ... by hexx Splunk Employee in Security 02-03-2025 2 8	2	8
Using SSL with connection between forwarders and AWS ACM (certificate MAanger) Hi, We have a set of indexers with no public IPs behind AWS NLB We would like to use AWS certificates that terminate ... by aamer86 Path Finder in Security 02-03-2025 0 7	0	7
complex conditional search Hey Splunkers, I'm trying to create a conditional search that will run on the same index but will have different sear... by intosplunk Engager in Security 01-30-2025 0 2	0	2
Migrating Splunk Enterprise from RHEL to Windows Hi, Yes, you read it right. One of my small lab is planning to migrate their Splunk deployment from RHEL to Windows. ... by jkamdar Communicator in Security 01-27-2025 0 5	0	5
Does Iframe of a report expire after a user leaves the organization? Hey, so my company is working on creating a visual in SharePoint by integrating Iframes from report. This is working ... by meetpatel2441 New Member in Security 01-13-2025 0 2	0	2
How to download my exam scorecard and obtained marks certification scorecard? Hi, Does anyone help me to download my exam scorecard and obtained marks.I have recently passed my splunk power user ... by karthick_03 Explorer in Security 01-11-2025 0 4	0	4
How to configure Splunk error pages / messages (like 404 not found)? Hi all, I use the web.conf file to configure login messages, ... Is it a similar method to configure error pages (lik... by fto Explorer in Security 01-07-2025 1 7	1	7
Certifications score From where we can see the actual score of any Splunk exam. Because from Splunk website we can only get certification ... by Devansh9401 Engager in Security 01-04-2025 0 2	0	2