I am trying to update PCIcomplience but i am getting Login failure.I am using the user/pass that i login to splunk.com /My company has licence/.Below is the output:
root@/opt/splunk/bin # ./splunk install app Splunk_DA-ESS_PCICompliance -update 1
Splunk username: nhs
Then i used my root user/pass but i got the following message :
Error during app install: failed to extract app from /opt/splunk/bin/Splunk_DA-ESS_PCICompliance to /opt/splunk/var/run/splunk/bundle_tmp/446fbab906660b58: No such file or directory
Then i did:
./splunk install app /opt/splunk/etc/apps/Splunk_DA-ESS_PCICompliance -update 1 and i got the message that PCI was installed but then on the Web interfeace i cannot see PCI any longer and i got the message :
Splunk_DB-ESS PCI Compliance version None is lower than required 3.4.0
I need your help.
Your first attempt at installing should have worked using your splunk credentials. Make sure the splunk user you are using has the permissions to install apps.
To avoid all these CLI issues go to the GUI and follow the steps shown here :
Let me know how that works out for you.
Some time ago - but anyway:
splunk install app splunk-app-for-pci-compliance-splunk-enterprise_370.spl