Security

Community Activity

"Run as" owner not seem to work for saved searches Based on documentation, and posts (Who do saved scheduled searches run as? and Question about "run as" (Owner or Use... by ww9rivers Contributor in Security 06-18-2024 0 2	0	2
Permission Issues when dealing with Splunk_TA_nix scripts Hello All, I have a solid understanding of the files/ how to deploy this application but my issue is with permission... by Jarohnimo Builder in Security 06-11-2024 0 14	0	14
Compare results from 2 searches Hi, I am running a search to get count of IP';s from yesterday & last month.index=<> source="/***" IP!="10." [\| in... by RahulMisra1 Explorer in Security 06-11-2024 0 2	0	2
How do I find out what port Splunk is running on? I have installed Splunk multiple times on my machine and I am trying to figure out what ports I have configured. Is ... by Simeon Splunk Employee in Security 06-10-2024 3 14	3	14
Splunk alert for Heap utilization I am trying to create a splunk alert to monitor the heap used utilization and alert when it exceeds 85 percent, can a... by praneeth_lv Observer in Security 06-09-2024 0 0	0	0
What user role setting allows users to "Add Data"? Usually we set our users in authorize.conf as - [role_<name>_user] importRoles = user What needs to be added for t... by ddrillic Ultra Champion in Security 06-07-2024 0 7	0	7
Perfmon events creeping up Hi, I have seen a steady increase in perfmon events or data in past 30 days. The number of hosts has been about same ... by ELADMIN Explorer in Security 06-04-2024 0 2	0	2
How to restrict write access to my dashboard from any users outside my team application? Hello,How to restrict write access to my dashboard from any users outside my team application?For example: I am "User... by LearningGuy Motivator in Security 06-03-2024 0 6	0	6
assets and identities currently for asset correlation with ips we have infoblox ,but that only works when we are in the company premises an... by Chiranjeev Explorer in Security 05-31-2024 0 3	0	3
Account lockout Hi Experts I am completely new to spunk, I have a two requirements. 1. One of my user is getting locked and how can c... by risingflight143 Explorer in Security 05-31-2024 0 8	0	8
$SPLUNK_HOME/etc/passwdの各フィールドについてこんにちは。初めてのため、不手際があるかもしれません。$SPLUNK_HOME/etc/passwdに以下のフィールドがあると思いますが、<?1>と<?2>に入る内容について教えて頂きたいです。: <ログインユーザー名> : <パスワ... by misaki Loves-to-Learn in Security 05-30-2024 0 0	0	0
playbook for "user password policy enforcement" is there playbook for this kind of thing?playbook "user password policy enforcement " by kareem Explorer in Security 05-29-2024 0 0	0	0
Azure AD SAML not working : Why is verification of SAML assertion using the IDP's certificate provided failing? Hi All, have generated Azure AD SAML XML and certificate using Splunk Blog: https://www.splunk.com/en_us/blog/tips-a... by ayush1906 Communicator in Security 05-29-2024 0 2	0	2
firewall logs hello every onei had sangfor firewall, and there is no addon on splunk for it,so what is the method to get firewall l... by mohammadnreda New Member in Security 05-27-2024 0 2	0	2
Configure Response Action via REST API Hi There,We are using the JIRA service desk add-on to open JSM tickets from splunk ES correlation search alerts. I fo... by jpauer New Member in Security 05-27-2024 0 0	0	0
How to send data to Splunk clsuters from Windows without UF Hi,I am new to working without splunk agents/universal forwards for ingesting data into Splunk. I need to know how ap... by payl_chdhry Path Finder in Security 05-26-2024 0 4	0	4
Splunk Attack Range 3.0 Hello Team, as we delve into Splunk Attack Range 3.0, we're interested in understanding the MITRE ATT&CK tactics and ... by Sharath22 New Member in Security 05-23-2024 0 2	0	2
How to integrate splunk into keycloak as an IDP Provider? Dear team, I am trying to configure the SSO for Splunk by using keycloak as IDP, could you provide any documentatio... by rkuttubo New Member in Security 05-22-2024 0 3	0	3
Question regarding COMMON CRITERIA I am trying to deploy Splunk 9.2.1 in air gapped environment. As I go through STIG list to harden the system, one of... by jkamdar Communicator in Security 05-20-2024 0 1	0	1
Resolve this Error on starting Splunk on UBUNTU? On starting Splunk on UBUNTU, I am getting this error: ./splunk: 1: Syntax error: "(" unexpected Can anyone help? I u... by ravneet009 Engager in Security 05-19-2024 1 5	1	5
Encryption Hello,Can 8089 port traffic be encrypted?What are the pros and cons? by Jyo_Reel Engager in Security 05-17-2024 0 4	0	4
FIPS/SSL Incompatibility? Attempting to install local/self-signed certs (Splunk Indexer houses Root CA with a cert distributed to all forwarder... by mjdiamore Engager in Security 05-16-2024 1 6	1	6
Server Certificates Does anyone have a thorough explanation of the certs in Splunk? And why they are all different yet the same?Can i use... by Skwerl23 Loves-to-Learn Lots in Security 05-15-2024 0 1	0	1
Max Lines Value Update In Search & Reporting App Hi Team,Our Splunk Search heads are hosted in Cloud and managed by Support and currently we are running with the late... by anandhalagaras1 Contributor in Security 05-15-2024 0 3	0	3
I'm trying to detech DoS with splunk server on kali As almost all the video on youtube using splunk server on the same victim computer that have "Local windows network m... by Duong_Nguyen New Member in Security 05-15-2024 0 0	0	0