Splunk Search

Security Key in server.conf

nawazns5038
Builder

what is the diff between the security key in the clustering stanza and the key in the general stanza in server.conf ?

Should the same key be used for both the shcluster and the indexer cluster ?

Tags (1)
0 Karma
1 Solution

horsefez
Motivator

Hi,

so the server.conf general key is a unique key that get's generated on first startup. It will be "salted" with a server unique value. Don't use this one for clustering.

For indexer clustering you should use an identical passphrase on all servers.
Something like: "applepie" ... which then after a restart gets converted into a hash using the server unique "salt" again.

You can use a different one for SH-Cluster, but you don't have to.

The important part is that you don't copy the "hashed" value... you should manually set the cleartext password and then restart the system.

View solution in original post

horsefez
Motivator

Hi,

so the server.conf general key is a unique key that get's generated on first startup. It will be "salted" with a server unique value. Don't use this one for clustering.

For indexer clustering you should use an identical passphrase on all servers.
Something like: "applepie" ... which then after a restart gets converted into a hash using the server unique "salt" again.

You can use a different one for SH-Cluster, but you don't have to.

The important part is that you don't copy the "hashed" value... you should manually set the cleartext password and then restart the system.

Get Updates on the Splunk Community!

OpenTelemetry for Legacy Apps? Yes, You Can!

This article is a follow-up to my previous article posted on the OpenTelemetry Blog, "Your Critical Legacy App ...

UCC Framework: Discover Developer Toolkit for Building Technology Add-ons

The Next-Gen Toolkit for Splunk Technology Add-on Development The Universal Configuration Console (UCC) ...

.conf25 Community Recap

Hello Splunkers, And just like that, .conf25 is in the books! What an incredible few days — full of learning, ...