Re: Unsecure Splunk Browser

arielpconsolaci · ‎06-15-2023

Hi Splunkers,

I am new to handling certificates but it seems to be the resolution that I need to resolve the unsecure browser issue when accessing my Splunk UI.

We have been given a certificate in .cer generated from a csr in which we listed the DNS of our Splunk instance.

Now I understand that we can generate a .pem out of this .cer but I am unclear as to the private key to use based on the parameters that we need to set in web.conf

[settings]
enableSplunkWebSSL = true
privKeyPath = <.key here>
serverCert = /home/user/certs/mycacert.pem

Reference: https://docs.splunk.com/Documentation/Splunk/9.0.5/Admin/Webconf

Would anyone be able to provide direction on this please?

Thanks a lot.

Cheers!

PickleRick · ‎06-16-2023

And what is the question?

As you generated CSR, you should have already generated a key for which you were creating the CSR so you must have it somewhere. Otherwise the cert you got is useless because it is paired to your private key.

Unsecure Splunk Browser

configuration

troubleshooting

using Splunk Enterprise

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

What Is the Name of the USB Key Inserted by Bob Smith? (BOTS Hint, Not the Answer)

Automating Threat Operations and Threat Hunting with Recorded Future

Join the Conversation