All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How does version change/upgrade affect Splunk Apps And Add-on configuration file in distributed Environment. ?

pratapbhanu2047
Engager
‎11-09-2017 07:15 AM

I am new to splunk and trying to find answer to question. I would really appreciate if you could guide me to good documentation or Link.

Tags (2)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

tmarlette
Motivator
‎11-09-2017 09:27 AM

In short, everything in /opt/splunk/etc/system/default and if it's an app / add-on, anything in /opt/splunk/etc/apps/<app_name>/default is changed or adjusted. This is the primary reason for making any customizations in the /local directory in either an app, or the CORE component. (This is assuming a non clustered deployment)

if you make changes in a /default directory, they will be overwritten on upgrade.

View solution in original post

Reply
Solved! Jump to solution
Solution

tmarlette
Motivator
‎11-09-2017 09:27 AM

In short, everything in /opt/splunk/etc/system/default and if it's an app / add-on, anything in /opt/splunk/etc/apps/<app_name>/default is changed or adjusted. This is the primary reason for making any customizations in the /local directory in either an app, or the CORE component. (This is assuming a non clustered deployment)

if you make changes in a /default directory, they will be overwritten on upgrade.

Reply
Get Updates on the Splunk Community!

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

 Prepare to elevate your security operations with the powerful upgrade to Splunk Enterprise Security 8.x! This ...

Get Early Access to AI Playbook Authoring: Apply for the Alpha Private Preview ...

Passionate about security automation? Apply now to our AI Playbook Authoring Alpha private preview ...

Reduce and Transform Your Firewall Data with Splunk Data Management

Managing high-volume firewall data has always been a challenge. Noisy events and verbose traffic logs often ...