×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
nyajoefit22
Loves-to-Learn Lots
Member since: ‎12-19-2023
‎10-23-2024
Community Statistics
Posts 3
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎12-19-2023
Activity Feed
View All

LDAP bind password left in clear text on deployer

by in Deployment Architecture
‎10-23-2024 03:11 AM
‎10-23-2024 03:11 AM
What would be the proper way to push an authentication.conf from the deployer and have the bind password not left in clear text? Is it possible to push the authentication from the deployer without the bind password  and then add another authentication.conf manually to each search head in system local with only the bind password in the stanza? After restart of the search head cluster I’m thinking the bind password would then be encrypted? Would this be the proper way to do this? Would appreciate any other suggestions.  ... View more

Re: Adding a new search head to an existing Search...

by in Deployment Architecture
‎10-23-2024 03:00 AM
‎10-23-2024 03:00 AM
Hello. I know this is an old post, but running into this same issue with the bind password being insecure on the deployer. What would be the proper way to push an authentication.conf from the deployer and have the bind password not left in clear text? Is it possible to push the authentication from the deployer without the bind password  and then add another authentication.conf manually to each search head in system local with only the bind password in the stanza?  ... View more

blacklisting event code 4679. TaskCategory=Kerber...

by in Splunk Search
‎12-19-2023 04:46 PM
‎12-19-2023 04:46 PM
Hello, I am trying to blacklist winevent code 4679 by   TaskCategory=Kerberos Service Ticket Operations.  This regex is not working.  blacklist7 = EventCode="4769" TaskCategory="\w+\s\w+\s\w+\s\w+" Ive also tried  blacklist7 = EventCode="4769" TaskCategory="Kerberos Service Ticket Operations" ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎10-23-2024 06:31 AM