Add bearer token auth to splunk driver #708
Conversation
update to latest
updates to latest
|
FYI: The splunkToken option is not documented in the splunklib.client class used in the current splunk driver. However, it is introduced in splunklib.binding class. The splunklib.client wraps a Pythonic layer around the wire-level binding of the splunklib.binding module. |
|
Thanks for your approval. https://github.com/microsoft/msticpy/actions/runs/6090840061/job/16526403910?pr=708 Would you slightly modify them ? Unfortunately, I'm away from my dev PC and back in several days. |
I can fix this but haven't been able to find the time before leaving for vacation later today. I can easily do it when I get back but I imagine you'll have the chance before this. |
…Tatsuya-hasegawa/msticpy into add_token_auth_to_splunk_driver
|
Ok, I was able to fix them.
|
|
Hi, @ianhelle The CI test finally seemed to be approved. Thanks in advance. :) |
Hi
I have implemented splunkToken auth in splunk driver.
Of course, I have completed the connection test to my splunk instances.
Reference: What is Splunk Auth Token ?
https://docs.splunk.com/Documentation/Splunk/9.1.1/Security/CreateAuthTokens
https://dev.splunk.com/enterprise/docs/devtools/python/sdk-python/howtousesplunkpython/howtoconnectpython/#Log-in-using-a-bearer-token
Token authentication is more secure than username & password authentication because of the RBAC and Expiring features.
Thus I would like you to merge this auth function as soon as possible.
Thank you.
Best regards,