Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Insecure login issue in new splunk setup

strive
Influencer
‎10-04-2013 12:05 PM

Hi,

In our system, we are always getting insecure login error. Our system is on RHEL 5.x. When I reboot the Search Head node, the 8000 port will be assigned and SH starts normally. Now when I try to login to the system, I get insecure login pop-up message in Firefox and IE. When i check the SH and try to stop and restart splunk on SH node, i get message 8000 port is not available.

Is there any settings that should be enabled on SH node to avoid the insecure login issue.

Thanks

Strive

Tags (1)
0 Karma
Reply

matt
Splunk Employee
Splunk Employee
‎10-04-2013 03:50 PM

enable_insecure_login is a setting that was added to allow a dashboard to be rendered in something other than Splunk. Are you doing that in your enviormnent? If not you probably want to disable the setting since it allows credentials to be passed in the clear (hence calling it insecure login). With that said I do not believe that setting is related to your setting. What version of Splunk are you running? Do you have update checking turned on? If you inspect the page in Firebug (or something similar) to do you see an insecure elements in the HTML?

0 Karma
Reply

strive
Influencer
‎10-04-2013 12:09 PM

Our web.conf has enable_insecure_login set to true.

0 Karma
Reply
Get Updates on the Splunk Community!

Stay Connected: Your Guide to May Tech Talks, Office Hours, and Webinars!

Take a look below to explore our upcoming Community Office Hours, Tech Talks, and Webinars this month. This ...

They're back! Join the SplunkTrust and MVP at .conf24

With our highly anticipated annual conference, .conf, comes the fez-wearers you can trust! The SplunkTrust, as ...

Enterprise Security Content Update (ESCU) | New Releases

Last month, the Splunk Threat Research Team had two releases of new security content via the Enterprise ...