https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485699#M16861 <P>I have splunk instance running on one linux server.<BR /> I have python code on another linux server, which I run manually something like: </P> <BLOCKQUOTE> <P>(console script command given in setup.py) (arguments)<BR /> Is it possible to run this via Splunk GUI? If so, how?</P> </BLOCKQUOTE> <P>Note: <BR /> This is to be run on demand and not in a scheduled way i.e. whenever user searches say a username from splunk GUI, python script from remote server needs to run, fetch some details and send back as results for the search.</P> Tue, 21 Jan 2020 07:44:17 GMT smitapatankarso 2020-01-21T07:44:17Z https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485699#M16861 <P>I have splunk instance running on one linux server.<BR /> I have python code on another linux server, which I run manually something like: </P> <BLOCKQUOTE> <P>(console script command given in setup.py) (arguments)<BR /> Is it possible to run this via Splunk GUI? If so, how?</P> </BLOCKQUOTE> <P>Note: <BR /> This is to be run on demand and not in a scheduled way i.e. whenever user searches say a username from splunk GUI, python script from remote server needs to run, fetch some details and send back as results for the search.</P> Tue, 21 Jan 2020 07:44:17 GMT https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485699#M16861 smitapatankarso 2020-01-21T07:44:17Z https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485700#M16862 <P>Sounds like you need a custom search command or external lookup. These links should get you started:</P> <P>External Lookups: <A href="https://docs.splunk.com/Documentation/Splunk/8.0.1/Knowledge/Configureexternallookups">https://docs.splunk.com/Documentation/Splunk/8.0.1/Knowledge/Configureexternallookups</A><BR /> Custom Search Command Docs: <A href="https://docs.splunk.com/Documentation/Splunk/8.0.1/Search/Writeasearchcommand">https://docs.splunk.com/Documentation/Splunk/8.0.1/Search/Writeasearchcommand</A><BR /> Custom Search Command Dev: <A href="https://dev.splunk.com/enterprise/docs/developapps/customsearchcommands/">https://dev.splunk.com/enterprise/docs/developapps/customsearchcommands/</A></P> <P>What kind of details does the script return? What does the script do? An example of an external search command is in Splunk Supporting Add-on for Active (<A href="https://splunkbase.splunk.com/app/1151/">https://splunkbase.splunk.com/app/1151/</A>). Given different arguments it will return LDAP user/object results to supplement results or create lookup tables.</P> <P>More details are likely needed to determine the best way to do this. There isn't really a simple "out of the box" way to do this.</P> Tue, 21 Jan 2020 15:47:06 GMT https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485700#M16862 mdsnmss 2020-01-21T15:47:06Z https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485701#M16863 <P>Thanks I will go through the provided information.</P> <P>The script needs to take a username as input (via splunk GUI).<BR /> It then needs to form a list of all the groups the user is a part of recursively, by communicating with Redis server which has raw information of users and groups.<BR /> It needs to return that list of groups to be displayed as splunk search result.</P> <P>splunk(splunk server)&lt;--&gt;server that has script&lt;--&gt;redis server </P> Thu, 23 Jan 2020 12:20:32 GMT https://community.splunk.com/t5/Deployment-Architecture/How-to-run-a-linux-command-on-remote-machine-via-splunk-GUI-on/m-p/485701#M16863 smitapatankarso 2020-01-23T12:20:32Z