Related Answers
Download topic as PDF
Configure the TLS Certificate
If the computer on which you're running the Splunk ODBC Driver is across a firewall from your Splunk platform server, Splunk recommends that you instruct the driver to verify a signed certificate upon connection with the server. To do this, install a valid certificate for the management port on your Splunk platform server, and enable the Verify Server SSL Certificate option in the driver.
Be aware that if you instruct the driver to verify a signed certificate, you must configure a TLS certificate on your Splunk platform server. (The default self-signed certificate is not sufficient.) Not configuring a certificate on your Splunk platform server causes the connection to fail.
The Splunk ODBC Driver supports only Transport Layer Security (TLS) version 1.2 and later. SSL is not longer supported.
To set up this functionality:
- On your Splunk platform server, configure one or more certificates.
- Point splunkd (the Splunk software back-end) to your certificate files by editing server.conf. Here's an example of an edited sslConfig stanza:
[sslConfig] enableSplunkdSSL = true sslKeysfile = server.pem sslKeysfilePassword = password caCertFile = cacert.pem caPath = $SPLUNK_HOME/etc/auth
- On the computer on which you've installed the Splunk ODBC Driver, follow the instructions in "Configuration" to open the Splunk ODBC Connection Options window.
- Check the box next to Verify Server SSL Certificate.
Note: Do not set requireClientCert to true in server.conf. The Splunk ODBC Driver does not use an SSL client certificate, so this setting causes the connection to fail.
|
PREVIOUS Configure the proxy server |
NEXT Configure the Load Balancer |
This documentation applies to the following versions of Splunk® ODBC Driver: 3.1.0, 3.1.1
Feedback submitted, thanks!