All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Is there any way I can use a custom AMI for Splunk in AWS?

msrkr
Explorer
‎10-05-2017 04:16 PM

Can I use a custom AMI which is hardened by a script for Splunk deployment in AWS?
If there is a possibility, how can I do it?
please suggest me.
I know just changing the AMI in the cloudformation does not work
There are some internal changes that need to be made.

Kindly help me with this.
Thank you in advance.

0 Karma
Reply

esix_splunk
Splunk Employee
Splunk Employee
‎10-05-2017 08:03 PM

You can install Splunk on any AMI in AWS that is supported. It would be up to you to change the cloudformation scripts as neccesary and make sure they work.

0 Karma
Reply

msrkr
Explorer
‎10-09-2017 06:57 PM

But I am unable to deploy it as it's not receiving success signal.

0 Karma
Reply

msrkr
Explorer
‎10-06-2017 07:24 AM

I have changed the AMI in cloud formation but did not get a success signal.

19:29:05 UTC-0400 ROLLBACK_IN_PROGRESS AWS::CloudFormation::Stack Spk The following resource(s) failed to create: [SplunkCM]. . Rollback requested by user.

19:29:04 UTC-0400 CREATE_FAILED AWS::EC2::Instance SplunkCM Failed to receive 1 resource signal(s) within the specified duration

18:28:47 UTC-0400 CREATE_IN_PROGRESS AWS::EC2::Instance SplunkCM Resource creation Initiated

0 Karma
Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Dynamic formatting from XML events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...