product
service
- Simple Security Consulting [Consulting]
- Splunk SOAR Automation Assessment Service [Consulting]
- Dashboard/SPL Creation Pack [Implementation/Building Support]
- Version upgrade service [implementation and construction support]
- Splunk Premium Apps construction support service [implementation and construction support]
- Splunk Security Log Analysis Start Package [Original App/Service]
- Splunk × CrowdStrike Falcon Insight, Macnica Original App [Original App/Service]
- Government uniform standard compatible App [Original App/Service]
- Smart Security Monitoring App [Original App/Service]
- Splunk × LANSCOPE Original App [Original App/Service]
- Security Monitoring App for Box [Original App/Service]
- Cloud Security Monitoring App [Original App/Service]
- SIEM Operation Monitoring Service [Original App/Service]
- List of services
- Macnica Premium Support for Splunk (utilization support, version upgrade monitoring)
- Macnica Premium Support for Splunk Skill Up Package
Specifications/Technical Information
Application for evaluation machine
- FAQ
How to renew the default server certificate
- release date
- 2018-03-16
- last updated
- 2023-12-11
- version
- Splunk Enterprise 9.0.4
Splunk Universal Forwarder 9.0.4
- Overview
- Steps to renew the default server certificate
- content
-
The server certificate (server.pem) provided by Splunk by default is created when the Splunk service is started for the first time after installing Splunk.
The expiration date of this server certificate will be 3 years after the date of first activation. If the expiration date is approaching, you can renew the server certificate by following the steps below.
Server.pem update procedure
- Temporarily save the current server.pem under the $SPLUNK_HOME/etc/auth folder from a directory outside $SPLUNK_HOME.
*$SPLUNK_HOME is the installation directory. By default, it is as follows:
Linux :
Splunk Enterprise : /opt/splunk
Universal Forwarder : /opt/splunkforwarder
Windows :
Splunk Enterprise : C:\Program Files\Splunk
Universal Forwarder : C:\Program Files\SplunkUniversalForwarder- Restart the Splunk service.
Command example:
$SPLUNK_HOME/bin/splunk restart
- After rebooting, make sure a new server.pem is created in $SPLUNK_HOME/etc/auth.
*You can check the expiration date of the newly created server.pem by executing the following command in $SPLUNK_HOME/etc/auth.
openssl x509 -enddate -noout -in server.pem
that's all
In charge of Macnica Splunk Co., Ltd.
- TEL:045-476-2010
- E-mail:splunk-sales@macnica.co.jp
Mon-Fri 8:45-17:30