Security

Community Activity

How to run a curl command to reassign an abandoned search? Running the curl command noted in the docs:https://docs.splunk.com/Documentation/Splunk/6.5.0/Knowledge/Resolveorphan... by tkwaller Builder in Security 02-21-2018 1 10	1	10
Indexer Discovery Error; pass4SymmKey or SSL? After setting the pass4SymmKey in my master node's server.conf file and in my forwarder's output.conf file I am still... by 22isaiah New Member in Security 02-20-2018 0 6	0	6
Why am I getting a timeout error in Splunk trying to update the LDAP server? Regards, The system displays the following error when I try to update the LDAP Server: Encountered The Following e... by markux Path Finder in Security 02-20-2018 0 8	0	8
Querying Access logs when access to these has been more than twice Morning Guru's, I am looking for a script to show the number of days a log was last accessed. Ive got this working b... by colinmchugo Explorer in Security 02-20-2018 0 7	0	7
Why is the scripted authentication failing after splunk restart? I've just set up scripted authentication with Atlassian Crowd from our Splunk Dev server, and had it working until I ... by thilleso Path Finder in Security 02-19-2018 0 4	0	4
How to add new user with SAML authentication method? Hi, We have configured splunk cloud ADFS account, on ADFS account we have configured group admin and added all relev... by onkarkore1 Explorer in Security 02-18-2018 0 0	0	0
Splunk SAML onelogin : Splunk page is not opening We are trying to configure Splunk SAML onelogin. After we did all the configuration, when i am trying to open Splunk ... by raomu Explorer in Security 02-16-2018 0 0	0	0
How to integrate Splunk with Stackstorm? We want to integrate Splunk with Stackstorm but it is throwing some following errors. Traceback (most recent call la... by chetanjangir09 New Member in Security 02-15-2018 0 0	0	0
What happened to the R Project app? The R Project app no longer appears on Splunkbase: http://apps.splunk.com/app/1735 by mgianola Explorer in Security 02-14-2018 2 5	2	5
How to set up multifactor Authentication with Duo Security via Duo Auth proxy on Splunk 6.6.5? I'm trying to setup multi-factor authentication using Duo Security on Splunk 6.6.5. Our Splunk server isn't allowed t... by mhigginson Explorer in Security 02-13-2018 1 0	1	0
Why is there an error "Size Limit Exceeded when trying to configure Splunk 7.0.2 with LDAP authentication? Hi all, We are trying to configure Splunk with Ldap authentication. However doing this, We have a message: LDAP Se... by danje57 Path Finder in Security 02-13-2018 2 0	2	0
Automatically Upload all files in a folder from windows machine into Splunk with Splunk web option. I tried "Files and Directories" option, but getting following error. unable to open file: path='\localhost\D$\Uplo... by siddharth1679 New Member in Security 02-09-2018 0 5	0	5
how Ad groups are tied to the groups within splunk 6.3 Hi , can anyone please help me with answer for "how Ad groups are tied to the groups within splunk 6.3". Please hel... by umsundar2015 Path Finder in Security 02-08-2018 0 0	0	0
500 errors after installing Certificates (.pem file), Is there a way to regenerate the ca.pem files without doing a reinstall? OK, We are standing up several new instances of Splunk 7.x and my Dev instance needed certs installed. I did this t... by swagner1965 Path Finder in Security 02-07-2018 0 1	0	1
Initial VMware OVA password We've installed the Enterprise OVA in our VMware environment and we're now sitting at the logon page, but can't log i... by DFFSupport Engager in Security 02-07-2018 3 2	3	2
Identify users with unusual activities in their role I am starting off with Splunk and trying to solve a problem. I have a data set with millions of log records. The use ... by amarrtya Engager in Security 02-07-2018 0 7	0	7
Will Splunk Software work properly on HyTrust encryption (FIPS 140-2)? If I enable HyTrust encryption (FIPS 140-2), will Splunk Software work properly? Do I need to enable FIPS-140 on the ... by optum New Member in Security 02-06-2018 0 1	0	1
Should a rest api user have permissions to run \| rest /services/search/jobs? Should a user with just "search" capability be able to view results for all users from \| rest /services/search/jobs? by grittonc Contributor in Security 02-05-2018 0 1	0	1
How to write/create permission under /etc from python? It seems to me that a python script (custom command and/or controller have no write permission under /etc) Is this m... by dominiquevocat SplunkTrust in Security 02-03-2018 0 1	0	1
How can I disable the login notification message that a new Splunk version is available? My Splunk users do not need to know when a new version of Splunk is available and would like to remove this messaging... by Ellen Splunk Employee in Security 02-03-2018 7 6	7	6
Does Splunk support Kerberos authentication? Hi, Does splunk support Kerberos authentication ? Thanks, Regards, by obatard New Member in Security 02-02-2018 0 3	0	3
Enabling SSO in Splunk using onelogin We want to enable SSO in Splunk using Onelogin. I have gone through the steps in splunk documents, but not really sur... by raomu Explorer in Security 02-02-2018 0 1	0	1
Does Splunk Enterprise Term Non-Production License support LDAP authentication? I've setup LDAP on Enterprise license before but didn't face an issue. But with the non prod license I cannot enable ... by prateedshetty Path Finder in Security 02-01-2018 0 3	0	3
How to get substring search using lookup as domain blacklist? I'd like to use a lookup list of known bad domains to compare againt my DNS logs, but I'm not sure how to do a substr... by gordo32 Communicator in Security 01-30-2018 0 2	0	2
How to show 2 consecutive events with 2 different values in same field? Hi Team, When a person login through server an event will be generated with a code when the same person login with t... by SathyaNarayanan Path Finder in Security 01-30-2018 0 1	0	1