Security

Community Activity

Account lockout Hi Experts I am completely new to spunk, I have a two requirements. 1. One of my user is getting locked and how can c... by risingflight143 Explorer in Security 05-31-2024 0 8	0	8
$SPLUNK_HOME/etc/passwdの各フィールドについてこんにちは。初めてのため、不手際があるかもしれません。$SPLUNK_HOME/etc/passwdに以下のフィールドがあると思いますが、<?1>と<?2>に入る内容について教えて頂きたいです。: <ログインユーザー名> : <パスワ... by misaki Loves-to-Learn in Security 05-30-2024 0 0	0	0
playbook for "user password policy enforcement" is there playbook for this kind of thing?playbook "user password policy enforcement " by kareem Explorer in Security 05-29-2024 0 0	0	0
Azure AD SAML not working : Why is verification of SAML assertion using the IDP's certificate provided failing? Hi All, have generated Azure AD SAML XML and certificate using Splunk Blog: https://www.splunk.com/en_us/blog/tips-a... by ayush1906 Path Finder in Security 05-29-2024 0 2	0	2
firewall logs hello every onei had sangfor firewall, and there is no addon on splunk for it,so what is the method to get firewall l... by mohammadnreda New Member in Security 05-27-2024 0 2	0	2
Configure Response Action via REST API Hi There,We are using the JIRA service desk add-on to open JSM tickets from splunk ES correlation search alerts. I fo... by jpauer New Member in Security 05-27-2024 0 0	0	0
How to send data to Splunk clsuters from Windows without UF Hi,I am new to working without splunk agents/universal forwards for ingesting data into Splunk. I need to know how ap... by payl_chdhry Path Finder in Security 05-26-2024 0 4	0	4
Splunk Attack Range 3.0 Hello Team, as we delve into Splunk Attack Range 3.0, we're interested in understanding the MITRE ATT&CK tactics and ... by Sharath22 New Member in Security 05-23-2024 0 2	0	2
How to integrate splunk into keycloak as an IDP Provider? Dear team, I am trying to configure the SSO for Splunk by using keycloak as IDP, could you provide any documentatio... by rkuttubo New Member in Security 05-22-2024 0 3	0	3
Question regarding COMMON CRITERIA I am trying to deploy Splunk 9.2.1 in air gapped environment. As I go through STIG list to harden the system, one of... by jkamdar Communicator in Security 05-20-2024 0 1	0	1
Resolve this Error on starting Splunk on UBUNTU? On starting Splunk on UBUNTU, I am getting this error: ./splunk: 1: Syntax error: "(" unexpected Can anyone help? I u... by ravneet009 Engager in Security 05-19-2024 1 5	1	5
Encryption Hello,Can 8089 port traffic be encrypted?What are the pros and cons? by Jyo_Reel Engager in Security 05-17-2024 0 4	0	4
FIPS/SSL Incompatibility? Attempting to install local/self-signed certs (Splunk Indexer houses Root CA with a cert distributed to all forwarder... by mjdiamore Engager in Security 05-16-2024 1 6	1	6
Server Certificates Does anyone have a thorough explanation of the certs in Splunk? And why they are all different yet the same?Can i use... by Skwerl23 Loves-to-Learn Lots in Security 05-15-2024 0 1	0	1
Max Lines Value Update In Search & Reporting App Hi Team,Our Splunk Search heads are hosted in Cloud and managed by Support and currently we are running with the late... by anandhalagaras1 Contributor in Security 05-15-2024 0 3	0	3
I'm trying to detech DoS with splunk server on kali As almost all the video on youtube using splunk server on the same victim computer that have "Local windows network m... by Duong_Nguyen New Member in Security 05-15-2024 0 0	0	0
Getting error when using package toolkit - issue in manifest file? I've been trying to package the app using the package toolkit and found an interesting issue. I have an older manifes... by mlstom New Member in Security 05-14-2024 0 1	0	1
Splunk web certification configuration Hello Splunkers!! I want to configure SSL certificate in Splunk so that my Splunk web URL communicate over https. T... by uagraw01 Motivator in Security 05-14-2024 0 3	0	3
How to stop a read-only user from deleting knowledge objects (ie. reports)? I was surprised to find that a user with read-only permissions can delete a report. Surely my Splunk set up is incorr... by mikeydee Explorer in Security 05-14-2024 1 1	1	1
Splunk web page can't reach this page Hi team, I had upgraded from 9.0.5 version to 9.1.2 and upgradation successfully completed, but splunk web page can't... by vijreddy30 Loves-to-Learn Everything in Security 05-13-2024 0 2	0	2
How to correlate two rules/alert into a third Hello everyone,How can I correlate two alerts into a third one?For instance:I have alert 1 and alert 2 both with medi... by matheusvortex Loves-to-Learn in Security 05-13-2024 0 5	0	5
Splunk Akamai API Hi , I am trying to achieve an automation whereon i will be running a query and then passing the IP's which i need t... by RahulMisra1 Explorer in Security 05-10-2024 0 5	0	5
Has anyone else run into this Product Version info error? Not sure what happened this morning but I was unable to log in as admin. I noticed that it had orphan some of my aler... by flyers777 Explorer in Security 05-09-2024 1 5	1	5
how to configure SSL on Windows i have a file with CRT extension from the third party. I am trying to convert the file into PEM but unable to get it ... by abhi_2985 Observer in Security 05-08-2024 0 9	0	9
Splunk SSL certificate decryption error Hello there!After following this docs https://docs.splunk.com/Documentation/Splunk/9.2.1/Security/Howtoself-signcerti... by Haleb Path Finder in Security 05-07-2024 0 2	0	2