All Apps and Add-ons
Highlighted

Is it safe to install a third party app on splunk like TA-symantec syslog, and how can I install it on a heavy forwarder which is a linux machine?

New Member

Hey! Can anyone tell me is it safe to install third party app on Splunk like TA-symantec syslog. If yes, how can I install it on heavy forwarder which is a Linux machine?

0 Karma
Highlighted

Re: Is it safe to install a third party app on splunk like TA-symantec syslog, and how can I install it on a heavy forwarder which is a linux machine?

Esteemed Legend

Download the app.
Transfer it to your HF into /tmp
Run these commands:

cd /opt/splunk/etc/apps
tar xvf /tmp/<your filename here>

You should remove the eventgen files and restart.

0 Karma