Splunk Enterprise Security
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Splunk dashboard user session never expires

cyber_castle
Path Finder
‎10-31-2018 08:32 AM

Hello guys,

We are using SH Clustering with Eneterprise SEcurity with F5 Load balancer. We have a requirement from our SOC team to display the dashboard on the TV - 24/7 so that they can monitor it continuously. Our users are connected through LDAP. I am aware off the setting - ui_inactivity_timeout in web.conf to zero so that it will never expires.

  1. We want to create only for one generic_user (soc_anaylsts) which is in the AD.
  2. If we have to create the user locally in the SH, will it work as we have a Load balancer and as far as i know, it will create only on one SH not on all.

Pls help

0 Karma
Reply

cyber_castle
Path Finder
‎11-07-2018 08:20 AM

@sir_lamneth - thanks for EmbedScheduledreports. Let me test this in our environment and will let you know.

0 Karma
Reply

cyber_castle
Path Finder
‎11-07-2018 08:15 AM

I have tried that script, for some reason its not working for me. May be is it because, it may have written for an older version of browser/splunk version?

0 Karma
Reply

sir_lamneth
Explorer
‎11-01-2018 11:03 AM

If you want to create a non-LDAP user, then you can do this in a Cluster. If you follow these instructions, then it will get replicated across the Cluster:

https://docs.splunk.com/Documentation/Splunk/7.2.0/DistSearch/AdduserstotheSHC

Another option is to embed the Report or Dashboard within another site.

https://docs.splunk.com/Documentation/Splunk/latest/Report/Embedscheduledreports

https://answers.splunk.com/answers/153158/feature-request-how-to-embed-a-dashboard-not-a-rep.html

0 Karma
Reply
Get Updates on the Splunk Community!

Unlock Database Monitoring with Splunk Observability Cloud

  In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...

Purpose in Action: How Splunk Is Helping Power an Inclusive Future for All

At Cisco, purpose isn’t a tagline—it’s a commitment. Cisco’s FY25 Purpose Report outlines how the company is ...

[Upcoming Webinar] Demo Day: Transforming IT Operations with Splunk

Join us for a live Demo Day at the Cisco Store on January 21st 10:00am - 11:00am PST In the fast-paced world ...