All Apps and Add-ons

Apps deployed on forwarders from deployment server has owner root

deovratdeshmukh
Loves-to-Learn

I have setup a deployment server which manages multiple forwarders. All my instances run with user splunk.

When I try to push apps from deployment server to forwarders the owner of the app reflects as "root" which should be splunk otherwise the app doesn't works.

It is very inconvenient to login to each forwarder and change the owner to splunk and restart the service again after the app is pushed.

Any solution for this?

Labels (1)
Tags (1)
0 Karma

mhotsi
Explorer

Make sure Splunk reboots as user Splunk not root.

0 Karma

richgalloway
SplunkTrust
SplunkTrust

Have you verified the ownership of $SPLUNK_HOME/etc/deployment-apps (on the deployment server) and everything within it?

---
If this reply helps you, an upvote would be appreciated.
0 Karma

deovratdeshmukh
Loves-to-Learn

Yes, everything in deployment-apps has owner as "splunk".

0 Karma
*NEW* Splunk Love Promo!
Snag a $25 Visa Gift Card for Giving Your Review!

It's another Splunk Love Special! For a limited time, you can review one of our select Splunk products through Gartner Peer Insights and receive a $25 Visa gift card!

Review:





Or Learn More in Our Blog >>