Solved: Can't disable remote web browsing

dpgrant · ‎02-11-2011

My Enterprise Trial license was just about to expire, so I applied the "free" license. Since there is no authentication in free, I'd like to only be able access Splunk Web from the server running Splunk itself. However, I can still get to it from my workstation remotely.

This is running on Windows Server 2008 (64 bit). I'm running Splunk 4.1.6.

Here's my server.conf in $SPLUNK_HOME\etc\system\local\server.conf. I restarted Splunk after modifying this file.

[general]

serverName = #removed#

allowRemoteLogin = never

[sslConfig]

sslKeysfilePassword = #removed#

gkanapathy · ‎02-11-2011

That only affects login to splunkd the server, not SplunkWeb, the web interface. In order to limit access to SplunkWeb, you should set the server.socket_host setting in web.conf to 127.0.0.1 (or the address of some other local-only interface).

View solution in original post

gkanapathy · ‎02-11-2011

That only affects login to splunkd the server, not SplunkWeb, the web interface. In order to limit access to SplunkWeb, you should set the server.socket_host setting in web.conf to 127.0.0.1 (or the address of some other local-only interface).

Can't disable remote web browsing

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Agent Mode Engaged! Enchaining Agentic Operations with Splunk AI Assistant 2.0

Announcing Modern Navigation: A New Era of Splunk User Experience

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

Join the Conversation