Security

Community Activity

OS and browser extraction from useragent Hi, I need to extract OS and browser details from useragent. Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1... by abhiram Explorer in Security 09-30-2019 2 4	2	4
Self-signed certificate without warnings? Has anybody figured out how to use a self-signed certificate without getting a warning that it's invalid? I can acces... by splunklearner12 Path Finder in Security 09-30-2019 0 3	0	3
SSL cert expired for 'https://mint.splunk.com' The ssl cert for 'https://mint.splunk.com' was expired on 26 September 2019 and the console seems no longer work. Whe... by rickyhe New Member in Security 09-30-2019 0 2	0	2
Restrict search term not working on a new created role inheriting the admin role Hi there, I have created an automatic lookup to separate events for different teams so that each events would be ass... by dashalfy New Member in Security 09-30-2019 0 0	0	0
Splunk GUI User Audit needed for LogIn and LogOut Hi, I have a need for auditing Splunk GUI Users for auditing. Our configuration is with LDAP and SSO. Therefore, _au... by mbasharat Builder in Security 09-29-2019 0 1	0	1
LDAP in Free version work? I have Free version Splunk. I have difficulty in setting LDAP authentication. I created the connection and the rights... by inhibitz New Member in Security 09-26-2019 0 4	0	4
Splunk Architect certification discount for partners. I am working with organisation having 1TB/day license. Will I get discount on Architect certification? by muizash Path Finder in Security 09-24-2019 0 1	0	1
Error installing self signed / ca signed certificates in splunk Following is the error after i update web.conf with certificate and keys i have from a CA authority. Splunk> CSI: Lo... by zerocool443 Explorer in Security 09-24-2019 0 5	0	5
Error in 'eval' command: The expression is malformed. Expected Hi ALL, need help for a using case here. we are trying to setup alert based on below data value1 ( the average o... by simingmplatform New Member in Security 09-24-2019 0 4	0	4
"Search auto-canceled" error during search query , what is solution? Good day I configured Splunk to receive Cisco ASA firewall log on udp 5141 port and installed ASA add-on for parsing... by milad001mehdi New Member in Security 09-24-2019 0 2	0	2
Encrypted Sendmail? I dont see a cut and dry answer on whether or not the Splunk Sendmail does encrypted email via PKI or any other mecha... by MFiller90 Explorer in Security 09-24-2019 0 1	0	1
My profile is corrupted I am not able to log into the indexer with my auditor's account. When I log into with the admin account my profile is... by cyberspecialist New Member in Security 09-23-2019 0 2	0	2
How do I get large LDAP/AD Groups (>1500 members) to work in Splunk? I've been attempting to configure Splunk to use some very large groups (>1500 members) to allow all users in my busin... by jmulloy Engager in Security 09-23-2019 6 6	6	6
Size Limit Exceeded in splunkd.log for LDAP Authentication I've just configured Splunk 6.0.3 using the GUI for AD authentication. I am able to save the configuration and map gr... by JeremyHagan Communicator in Security 09-20-2019 0 8	0	8
splunk hash-passwd Command Not Accepting My Password Hi, May I please get some clarification as to why my password isn't accepted by the splunk hash-passwd CLI command? ... by morethanyell Builder in Security 09-19-2019 0 2	0	2
Is it possible to setup HEC to use multiple/unique ports and ssl certificates for multiple/unique senders? Hi When I create a new input for HTTP Event Collector via the WebUI Under /opt/splunk/etc/apps/search/local inputs... by Glasses Builder in Security 09-17-2019 0 3	0	3
Splunk unable to read specific files even though it can when started from the command line Scenario: Running Splunk 6.1.x (either the forwarder or indexer) Using /etc/init.d/splunk to start/stop Splunk as u... by bosburn_splunk Splunk Employee in Security 09-17-2019 6 6	6	6
Why is permission denied when restarting Splunk? When we try to restart the splunk it says its getting permission denied on these two files:/etc/sysconfig/init: Permi... by ram254481493 Explorer in Security 09-17-2019 0 5	0	5
help with AD user search where user!="*$" Hi, I'm doing searches for account login failures using EventCode="4625". The problem is the search returns a lot o... by sdewar83 Path Finder in Security 09-16-2019 0 2	0	2
Eventgen - ERROR ExecProcessor - message from "python /opt/splunk/etc/apps/SA-Eventgen/bin/modinput_eventgen.py" Hi all, For some reason i have this error in splunkd.log and there are no logs being generated from other application... by astatrial Contributor in Security 09-16-2019 0 12	0	12
curl 35 error SSL connect error Hi, I have installed collectd on a server and I am trying to send metrics using the write_splunk plugin. My server h... by johnjonatan319 Engager in Security 09-16-2019 1 0	1	0
java heap space memory What app is this? for example appname is java Usually for java you can look for the "java -Xmx256m -Xms512m" line w... by 1206chandra Explorer in Security 09-15-2019 0 0	0	0
Enterprise Security ess_admin role vs admin role Deployment: on premise, distributed Splunk Platform version : 7.2.6 Enterprise Security version : 5.3.0 Hello, We a... by gdigrego Path Finder in Security 09-15-2019 1 4	1	4
ignoreOlderThan Invalid for batch input Does ignoreOlderThanstanza in inputs.conf is Invalid for batch input? I am getting error as-"Invalid key in stanza" ... by ips_mandar Builder in Security 09-13-2019 0 1	0	1
Configuring a role for Health Checks? All, I am creating a weekly task for a jr NOC staffed to run the management console's "health check" weekly and not... by daniel333 Builder in Security 09-13-2019 0 0	0	0