Splunk Enterprise
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

KVstore SSL error

Haleb
Path Finder
‎03-19-2025 08:32 AM

Hello there. After updating from 9.3.1 to 9.4.1 my KVstore stoped working. During quick investigation I found the following errors:

2025-03-19T14:35:15.556Z I  NETWORK  [listener] connection accepted from 127.0.0.1:41888 #1188 (1 connection now open)
 2025-03-19T14:35:15.566Z E  NETWORK  [conn1188] SSL peer certificate validation failed: unable to get issuer certificate
 2025-03-19T14:35:15.566Z I  NETWORK  [conn1188] Error receiving request from client: SSLHandshakeFailed: SSL peer certificate validation failed: unable to get issuer certificate. Ending connection from 127.0.0.1:41888 (connection id: 1188)

openssl s_client -connect 127.0.0.1:8191 -showcerts 
gives me valid certificate info. Any idea why I receive this errors? Thx

 

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Haleb
Path Finder
‎04-17-2025 05:05 AM

I think the easiest way is to use default certificates for KV store.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

Haleb
Path Finder
‎04-17-2025 05:05 AM

I think the easiest way is to use default certificates for KV store.

0 Karma
Reply
Solved! Jump to solution

kiran_panchavat
SplunkTrust
SplunkTrust
‎03-21-2025 05:21 AM

@Haleb 

Hey, take a look at this documentation, I think it covers the same issue you’re running into

Solved: KV Store Failing to start 9.4 .1 - Splunk Community 

 

Did this help? If yes, please consider giving kudos, marking it as the solution, or commenting for clarification — your feedback keeps the community going!
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Index This | What travels the world but is also stuck in place?

April 2026 Edition  Hayyy Splunk Education Enthusiasts and the Eternally Curious!   We’re back with this ...

Discover New Use Cases: Unlock Greater Value from Your Existing Splunk Data

Realizing the full potential of your Splunk investment requires more than just understanding current usage; it ...

Continue Your Journey: Join Session 2 of the Data Management and Federation Bootcamp ...

As data volumes continue to grow and environments become more distributed, managing and optimizing data ...