We're trying to use Splunk Light and the HEC from the browser. Browsers don't allow ajax calls to https sites with self-signed certs, like the one on the HEC endpoint.
How can we setup a legitimate certificate on the endpoint so we can use splunk light HEC from the browser?
Thanks!
Im pretty sure you can change the splunk light certificate the same way you would change splunk enterprise.
You might have to name th the exact same as the out of the box certs, but I'd try naming them different fisrt.
See if this link helps, it's a bit of a read with other links to follow within but some very good information on how to renew is in the link and also good info on how to "roll your own" is in the presentation from dwaddle.
Thanks for the multiple replies to help. Do you have the link? I think you forgot to include it.
Thanks!