Splunk® Phantom

Administer Splunk Phantom

Acrobat logo Download manual as PDF

This documentation does not apply to the most recent version of Splunk® Phantom. Click here for the latest version.
Acrobat logo Download topic as PDF

Splunk Phantom certificate store overview

Splunk Phantom has a certificate store used to validate certificates when forming connections to other servers. The certificates in the store are trusted certificate authority (CA) certificates from mkcert.org and are updated periodically. In almost all cases, Splunk Phantom can use its certificate store to validate any certificate issued by a commercial certificate authority (CA).

The default certificate store cannot be used to validate self-signed certificates, or certificates issued by an internal CA. You must add these custom certificates to the Splunk Phantom certificate store.

Important information about the Splunk Phantom certificate store:

Last modified on 20 October, 2020
Add and configure apps and assets to provide actions in Splunk Phantom
Add or remove certificates from the Splunk Phantom certificate store

This documentation applies to the following versions of Splunk® Phantom: 4.8

Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters