Hello
I'm trying to install a web certificate for port 8089, I don't know what I'm doing wrong.
There are already 3 scans and the vulnerability continues to appear.
Someone who has already solved it
This is the stanza I have in the web.conf file
[settings]
enableSplunkWebSSL = true
privKeyPath = /opt/splunk/etc/auth/mycerts/certificate.key
serverCert = /opt/splunk/etc/auth/mycerts/certificate.pem
Hi richgalloway
The problem I have is that a scan was performed to one of the servers where a universal forwarder is installed and a vulnerability in port 8089 of the splunk service was detected.
To solve this problem, a digital certificate was requested, upload it to the deployment server, in a second scan the vulnerability is still active