Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Difference between cacert.pem ca.pem server.pem

splunkreal
Motivator
‎05-28-2021 05:52 AM

Hello guys,

is there documentation somewhere explaining roles of default certificates, especially cacert.pem/ca.pem :

cacert.pem : SplunkCommonCA

ca.pem : SplunkCommonCA with private key (no pwd)

server.pem : server certificate, can be renewed by deleting + restart splunkd

Thanks 🙂

 

* If this helps, please upvote or accept solution 🙂 *
Labels (2)
Labels
0 Karma
Reply

aasabatini
Motivator
‎05-28-2021 06:33 AM

Hi @splunkreal 

here 

https://docs.splunk.com/Documentation/Splunk/8.2.0/Security/ConfigureSplunkforwardingtousesignedcert...

 

“The answer is out there, Neo, and it’s looking for you, and it will find you if you want it to.”
0 Karma
Reply

splunkreal
Motivator
‎05-28-2021 07:02 AM

nothing about ca.pem

* If this helps, please upvote or accept solution 🙂 *
0 Karma
Reply

aasabatini
Motivator
‎05-28-2021 07:26 AM

 

https://docs.splunk.com/Documentation/Splunk/8.2.0/Security/Aboutdefaultcertificateauthentication

 

https://wiki.splunk.com/Community:Splunk2Splunk_SSL_3rdPartyCA

 

 

“The answer is out there, Neo, and it’s looking for you, and it will find you if you want it to.”
Reply

splunkreal
Motivator
‎05-28-2021 07:34 AM

Not clear, it seems cacert.pem is for management port and ca.pem for web, of course server.pem for the server certificate.

https://community.splunk.com/t5/Security/cacert-pem-Why-does-Splunk-need-it-to-start/m-p/246234

 

* If this helps, please upvote or accept solution 🙂 *
Tags (1)
0 Karma
Reply
Get Updates on the Splunk Community!

Built-in Service Level Objectives Management to Bridge the Gap Between Service & ...

Wednesday, May 29, 2024  |  11AM PST / 2PM ESTRegister now and join us to learn more about how you can ...

Get Your Exclusive Splunk Certified Cybersecurity Defense Engineer at Splunk .conf24 ...

We’re excited to announce a new Splunk certification exam being released at .conf24! If you’re headed to Vegas ...

Share Your Ideas & Meet the Lantern team at .Conf! Plus All of This Month’s New ...

Splunk Lantern is Splunk’s customer success center that provides advice from Splunk experts on valuable data ...