useSSL doesn't seem to work in 8.0.2.1
I am trying to set up my forwarders to use SSL without having to use the built in client certs on version 8.0.2.1. It looks like the option useSSL in the outputs.conf file doesn't do what the...
View ArticleHow to configure Splunk Enterprise in front of AWS ELB instance
We have deployed Splunk Enterprise on an EC2 instance behind a classic ELB in AWS with HTTPS enabled (screenshots attached). Splunk runs in plain HTTP in the default port but we have set in our...
View Articlehow to config SSL for db connector
Hi, We need to use SSL while build connection with ms ssql server, Pls tell me how to config SSL in db connector app? how to import the certificates?
View ArticleAdditional SSL Verification
Hey everyone. First time SSL setup (IDX & UF both v8.x) and cert creation (never done before). Had a question about verifying if things worked. I walked through splunk docs and got to the point of...
View ArticleHow to Disable SSL Validation in Gitlab Add-on?
I am facing following error while trying to collect logs from gitlab add on. Can anyone help me disable it. Changing the verify=True to False tor Http request function in base_modinput.py did not help...
View ArticleSecure splunk enterprise cluster deployment with SSL / mutual TLS
Hi, We are deploying splunk enterprise in aws and we want to know how and which all components to be ssl secured. Few points about our cluster and we have to bind with these constraints 1. There are no...
View ArticleSSL/TLS on a TCP data input?
I need to setup a TCP data input and I need to ensure that it is SSL/TLS. I understand that I can add a stanza to an inputs.conf file as referenced in this post:...
View ArticleGetting "unsupported certificate purpose" ERROR when enabling SSL on...
Hi All, I want to enable SSL for Splunk management port(8089) for securing inter-splunk communications. I have below settings in my Cluster Master server.conf [sslConfig] enableSplunkdSSL = true...
View ArticleTcpout Processor: The TCP output processor has paused the data flow....
I have a new Splunk deployment with a multi-site index cluster. I currently have setup heavy forwarders using indexer discovery and assigning them to the primary site. In my DMC all health checks and...
View ArticleIndexer/UF SSL: requireClientCert and SSL3_GET_RECORD:wrong version number...
Hello, I have been working to enable SSL between a UF and an indexer and am not sure if I follow the usage of the requireClientCert option. It seems to me the purpose of this option is disabling a...
View ArticleGetting authentication error when adding new input for Splunk Add-on for...
Hi guys, We want to onboard some data from the Cloud Storage Bucket of our GCP platform. When adding a new input, we have this error: Unexpected error "" from python handler: "(SSLError(1, u'[SSL:...
View ArticleCannot figure out SSL configuration beween Indexer and Forwarders (7.3.4)
I have followed all of Splunk's documentation to be able to use certificates signed by a local Certificate Authority and have tried to set up the SSL configuration in server.conf, inputs.conf, and...
View Articlehow to implement ssl in outputs.conf
More than 70% of forwarding destinations have failed. Ensure your hosts and ports in outputs.conf are correct. Also ensure that the indexers are all running, and that any SSL certificates being used...
View ArticleSplunk Enterprise 8089 Vulnerability Scan Results: Resolve these SSL errors...
Hello our splunk forwarder only on our nessus instance is generating findings on port 8089. Our splunk doesn't use the universal forwarder's SSL (we implemented our own wrapper). So why is it trying to...
View ArticleDB connect problem sql server
Hello, I'm having problems when trying to connect to a database through DB Input, when I click on validate the following error message appears: "com.zaxxer.hikari.pool.HikariPool $...
View ArticleHow to forward all indexed data from all indexes from heavy forwarder to...
I am using Splunk Free, and the Splunk add-on for AWS, attempting to index and forward generic s3 data with a custom index name to a Splunk Enterprise instance. It looks like data is being indexed, and...
View ArticleDifference between pass4SymmKey and SSL in a distributed environment, and...
Hi, Can someone help me understand the difference between pass4symmkey and SSL settings for secure Splunk connections in a distributed environment? What should we use for indexing? Cluster peers...
View ArticleSetting up secure communication between DS and UF
Hello, We got a requirement to secure the communication between Deployment server and UF on port 8089. Can someone help me on below queries. - We are managing around 200 servers from a DS and...
View ArticleUniversal Forwarder on Windows: Errors with Splunk Indexer (SSL).
So I have a Universal forwarder installed on a Windows system (v7.3.3) and I have it set up to communicate with my Splunk Enterprise server (v. 7.3.4). The Windows system has checked into Splunk, when...
View ArticleSmartStore: How to encrypt data in-flight with SSL when uploading and...
I am trying to better understand the encryption of data in-flight when sending data up to AWS S3 and pulling it back down. The docs page...
View Article