Security

Community Activity

Splunk Security Apps: Splunk Security Essentials vs Enterprise Security + Splunk ES Content update I had encoutered an interesting question from my client/security SME1. Which one is better. To have Splunk Security E... by koshyk Super Champion in Security 10-15-2021 0 5	0	5
AD user account will be expired in the next 7 days Hi Fellows, i try to have some statistics about AD user which their AD account will be expired in 7 days.I need help ... by silverem78 Engager in Security 10-13-2021 0 3	0	3
can any one help me with step by step ssl configuration from UF to HF and HF to Indexers? can any one help me with step by step ssl configuration from UF to HF and HF to Indexers? Any help would be apprecita... by btshivanand Path Finder in Security 10-10-2021 0 0	0	0
avoid data loss I work for a bio company (Creative Biogene) and I want to know how can I avoid data loss in my working computer? by mamamia0819 Observer in Security 10-08-2021 0 2	0	2
Do I need to changes Splunk password ? Hi Splunker,I'm using MSA (Managed Service Account) to run my Splunk. So let's say if I changed my MSA password from ... by vikramyadav Contributor in Security 10-07-2021 0 1	0	1
Index permissions don't seem to work I have a small all-in-one testing instance of Splunk Enterprise 8.1.3 (noone bothered to update for now ;-))I wanted ... by PickleRick SplunkTrust in Security 10-05-2021 0 2	0	2
how do i monitor my own system ? So I am very new to Splunk and I have just started using it. What I want to do is be able to view my own laptops oper... by rcon313 Explorer in Security 10-01-2021 0 3	0	3
How to hide system messages on dashboard panels. Is there any way to hide system messages on dashboard panels?I already set "depends" at html tags but the messages sh... by smart111 Explorer in Security 10-01-2021 0 0	0	0
Events are showing in binary After onboarding done, The logs are reporting to splunk, But most of the events are showing like binary as below. The... by Umashankar New Member in Security 09-30-2021 0 2	0	2
Removing the 'schedule_rtsearch' capability from the default user role I have a custom authorize.conf that was intended to disable the schedule_rtsearch capability for all users: [defaul... by _smp_ Builder in Security 09-30-2021 0 3	0	3
Anyone can help me with this splunk cloud error? Attackers might be trying to steal your information from www. staging.splunk.com (for example, passwords, messages,... by Splunknewbi New Member in Security 09-29-2021 0 0	0	0
Consent banner for Splunk? At our organization we use Splunk with Apache to provide LDAP authentication using smart cards. We are required to pr... by Stefanie Builder in Security 09-28-2021 0 1	0	1
Can you change permissions on an executed savedsearch? I have a dashboard that loadjobs a scheduled savedsearch. I needed to grant dashboard access to a new role, so I adde... by nick405060 Motivator in Security 09-28-2021 0 5	0	5
Why am I unable to "browse more apps" or install an app on Splunk Web? I just installed Splunk Enterprise on my Mac. Started Splunk and got into Splunk Web UI. When I click the large Plus... by AllanMarcus Explorer in Security 09-27-2021 0 4	0	4
Configure Splunk forwarding on Windows hosts to use your own certificates We are running a Splunk cluster (version 8.1.2) and trying to secure the forwarding from the Universal Forwarders (al... by HumanPrinter Explorer in Security 09-27-2021 0 3	0	3
hidden user in users hi we had the user with name user1, after some days the user was hidden in settings>users, but still user can login t... by khanlarloo Explorer in Security 09-26-2021 0 1	0	1
Splunk Fundamentals Part 1: Login failure in Module 13 lab I'm taking the Splunk Fundamentals Part 1 the free training. On Module 13 Lab, I see a warning that says "This lab wi... by aiyda New Member in Security 09-24-2021 0 3	0	3
Can the SSL encryption between SHs, Indexers, DS , FWs be only checked via CLI? Any way through GUI? Thx a million I need to see if the default encryption between Splunk components be checked via GUI? Am talking about the SSL encryp... by SamHTexas Builder in Security 09-22-2021 0 0	0	0
Splunk needs a shell? All, Just noticed when Splunk UF installs it creates a user "splunk" with a login shell /bin/bash in /etc/passwd. e.g... by daniel333 Builder in Security 09-22-2021 0 4	0	4
SSL anonymous ciphers supported Hello,We are using the Tenable Infrastructure Vulnerability scanner to scan regularly our complete infrastructure. Te... by damucka Builder in Security 09-22-2021 1 1	1	1
Security Concern: Does Splunk Need A Shell I was wondering if it is really necessary for the Splunk account to have a shell (/bin/bash)? I have set up a couple... by imarks004 Path Finder in Security 09-22-2021 1 3	1	3
Enterprise Security Data Compartmentalization When I create a role and assign it to a user in Splunk Enterprise, I have successfully tested that the user can only ... by Paul Explorer in Security 09-17-2021 0 3	0	3
Is it possible to admin Splunk instance without logon to the OS splunk user? Hello,I have an issue with the security of the Splunk installation. Actually it is not about Splunk itself - after ea... by damucka Builder in Security 09-17-2021 0 3	0	3
List of universal Forwarder Hi,Is there any method to get the list of all the universal forwarder that is being forwarded to Indexer?Regards,Rahu... by rahul2gupta Path Finder in Security 09-17-2021 0 3	0	3
Send Notable events to stand alone indexer Hi,how can we send ES notable events from cluster setup to a stand alone indexer. by islam Explorer in Security 09-15-2021 0 3	0	3