Official recommended approaches:
https://www.splunk.com/blog/2011/03/15/storing-encrypted-credentials/
https://www.splunk.com/blog/2016/10/10/encrypt-a-modular-input-field-without-using-setup-xml/
Both are ... less gooder. The splunk sdk should provide something like new SecureValue("some-semi-important-thing!") . Or something like option 1 should exist for single values, not username/password/realm combos -- I tried, it is not a smooth solution, and you will be injecting javascript into your setup.xml file to hammer things into place. But hey, with enough time and a big enough hammer, you can't do a lot of neat things.
... View more