Security

Community Activity

How to configure User access based on index Hi, I want to set up various user roles to users in my splunk instances. Like Users from Group A should only have ac... by Gowthamdevaraj New Member in Security 10-08-2019 0 1	0	1
Disable SSL2, SSL3 and TLS1.0 globally Hi We have a clustered index setup (two indexers) on 7.1.1 and 3 search heads (unclustered). What is the recommended... by stevehut New Member in Security 10-08-2019 0 1	0	1
How do you build a search that gets a list of forwarders using SSL with successful connections? Can you help me make a search/query so I can get a list of forwarders using SSL with successful connections? by guheal New Member in Security 10-07-2019 0 3	0	3
cost of splunk Splunk Enterprise Certified Admin I have no course on splunk, and the company had me look up everything that i could from costs to time consumption to ... by rsaude Path Finder in Security 10-07-2019 0 7	0	7
How much RAM do I need to avoid I/O problems? I have noticed a correlation between RAM usage and I/O on my indexers. Whenever RAM usage goes around or above 50%, I... by gabriel_vasseur Contributor in Security 10-04-2019 0 6	0	6
Why am I getting the error "The request was aborted: Could not create SSL/TLS secure channel"? Dear Team, I am new to Splunk and trying to create one same for hitting the Splunk endpoint from the c# Code. I have... by adhakshinamoort New Member in Security 10-04-2019 0 3	0	3
Splunk web server external login I'm using VirtualBox as a Virtual machine with CentOS 7 on it. I have used a NAT-adapter with port forwarding and a H... by splunk_user_99 Explorer in Security 10-02-2019 0 1	0	1
OS and browser extraction from useragent Hi, I need to extract OS and browser details from useragent. Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1... by abhiram Explorer in Security 09-30-2019 2 4	2	4
Self-signed certificate without warnings? Has anybody figured out how to use a self-signed certificate without getting a warning that it's invalid? I can acces... by splunklearner12 Path Finder in Security 09-30-2019 0 3	0	3
SSL cert expired for 'https://mint.splunk.com' The ssl cert for 'https://mint.splunk.com' was expired on 26 September 2019 and the console seems no longer work. Whe... by rickyhe New Member in Security 09-30-2019 0 2	0	2
Restrict search term not working on a new created role inheriting the admin role Hi there, I have created an automatic lookup to separate events for different teams so that each events would be ass... by dashalfy New Member in Security 09-30-2019 0 0	0	0
Splunk GUI User Audit needed for LogIn and LogOut Hi, I have a need for auditing Splunk GUI Users for auditing. Our configuration is with LDAP and SSO. Therefore, _au... by mbasharat Builder in Security 09-29-2019 0 1	0	1
LDAP in Free version work? I have Free version Splunk. I have difficulty in setting LDAP authentication. I created the connection and the rights... by inhibitz New Member in Security 09-26-2019 0 4	0	4
Splunk Architect certification discount for partners. I am working with organisation having 1TB/day license. Will I get discount on Architect certification? by muizash Path Finder in Security 09-24-2019 0 1	0	1
Error installing self signed / ca signed certificates in splunk Following is the error after i update web.conf with certificate and keys i have from a CA authority. Splunk> CSI: Lo... by zerocool443 Explorer in Security 09-24-2019 0 5	0	5
Error in 'eval' command: The expression is malformed. Expected Hi ALL, need help for a using case here. we are trying to setup alert based on below data value1 ( the average o... by simingmplatform New Member in Security 09-24-2019 0 4	0	4
"Search auto-canceled" error during search query , what is solution? Good day I configured Splunk to receive Cisco ASA firewall log on udp 5141 port and installed ASA add-on for parsing... by milad001mehdi New Member in Security 09-24-2019 0 2	0	2
Encrypted Sendmail? I dont see a cut and dry answer on whether or not the Splunk Sendmail does encrypted email via PKI or any other mecha... by MFiller90 Explorer in Security 09-24-2019 0 1	0	1
My profile is corrupted I am not able to log into the indexer with my auditor's account. When I log into with the admin account my profile is... by cyberspecialist New Member in Security 09-23-2019 0 2	0	2
How do I get large LDAP/AD Groups (>1500 members) to work in Splunk? I've been attempting to configure Splunk to use some very large groups (>1500 members) to allow all users in my busin... by jmulloy Engager in Security 09-23-2019 6 6	6	6
Size Limit Exceeded in splunkd.log for LDAP Authentication I've just configured Splunk 6.0.3 using the GUI for AD authentication. I am able to save the configuration and map gr... by JeremyHagan Communicator in Security 09-20-2019 0 8	0	8
splunk hash-passwd Command Not Accepting My Password Hi, May I please get some clarification as to why my password isn't accepted by the splunk hash-passwd CLI command? ... by morethanyell Builder in Security 09-19-2019 0 2	0	2
Is it possible to setup HEC to use multiple/unique ports and ssl certificates for multiple/unique senders? Hi When I create a new input for HTTP Event Collector via the WebUI Under /opt/splunk/etc/apps/search/local inputs... by Glasses Builder in Security 09-17-2019 0 3	0	3
Splunk unable to read specific files even though it can when started from the command line Scenario: Running Splunk 6.1.x (either the forwarder or indexer) Using /etc/init.d/splunk to start/stop Splunk as u... by bosburn_splunk Splunk Employee in Security 09-17-2019 6 6	6	6
Why is permission denied when restarting Splunk? When we try to restart the splunk it says its getting permission denied on these two files:/etc/sysconfig/init: Permi... by ram254481493 Explorer in Security 09-17-2019 0 5	0	5