Solved: security question - data transmitted (from forward...

mf2268 · ‎05-23-2012

Hi,,,
we are looking to install splunk.
scenario - unix and windows devices ... syslog unix server
what i would like to do is install splunk on syslog server; install forwarder on unix and wintel servers.
my question: how is data secured as it is sent to syslog (splunk server)
ssh , tls
is there a preference

any info you can provide is appreciated.

ChrisG · ‎05-23-2012

You can enable SSL on the forwarders (using outputs.conf) and receiver (using inputs.conf). See Use SSL to encrypt and authenticate data from forwarders in the Admin Manual.

View solution in original post

ChrisG · ‎05-23-2012

You can enable SSL on the forwarders (using outputs.conf) and receiver (using inputs.conf). See Use SSL to encrypt and authenticate data from forwarders in the Admin Manual.

araitz · ‎05-23-2012

While you are at it, don't forget to review http://docs.splunk.com/Documentation/Splunk/latest/Admin/Hardeningstandards

jworthington_sp · ‎05-23-2012

There are also some security tips on the Wiki that might be helpful:

http://wiki.splunk.com/Community:Security_and_compliance

mf2268 · ‎05-23-2012

thank you.

security question - data transmitted (from forwarder)

Federated Search for Amazon S3 | Key Use Cases to Streamline Compliance Workflows

New Dates, New City: Save the Date for .conf25!

Introduction to Splunk Observability Cloud - Building a Resilient Hybrid Cloud