Security

need a credentials file instead of --auth user:passwd

ronerf
Explorer

I want to script this for backups:

splunk _internal call /data/indexes/main/roll-hot-buckets --auth 'username:password'

Is there a way to call an external credentials file from the splunk command so the password isn't on the command line?

Tags (1)
0 Karma

nickhills
Ultra Champion

Spent 2 mins more thinking about it..
- for a very basic level of obfuscation:

echo admin:changeme|base64 > credential.txt

and then:

splunk _internal call /data/indexes/main/roll-hot-buckets --auth $(cat credential.txt|base64 --decode)

Still trivial to circumvent, but prevents someone reading it over your shoulder!

If my comment helps, please give it a thumbs up!
0 Karma

ronerf
Explorer

Thanks; your solutions involve leveraging the shell, which has its own problems. I was hoping for a switch in the splunk command itself.

0 Karma

nickhills
Ultra Champion

I have not tested this, but if your not too concerned about the credentials being in a clear (albeit separate) file

In credential.txt:

admin:changeme

then you can run

splunk _internal call /data/indexes/main/roll-hot-buckets --auth $(< credential.txt)

it should go without saying this approach is not without its pitfalls, but I think it addresses your question

If my comment helps, please give it a thumbs up!
0 Karma
Get Updates on the Splunk Community!

CX Day is Coming!

Customer Experience (CX) Day is on October 7th!! We're so excited to bring back another day full of wonderful ...

Strengthen Your Future: A Look Back at Splunk 10 Innovations and .conf25 Highlights!

The Big One: Splunk 10 is Here!  The moment many of you have been waiting for has arrived! We are thrilled to ...

Now Offering the AI Assistant Usage Dashboard in Cloud Monitoring Console

Today, we’re excited to announce the release of a brand new AI assistant usage dashboard in Cloud Monitoring ...