All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk App for VMware: vCenter Linux appliance 6.0 integration issue

splunk24
Path Finder
‎05-19-2017 12:04 PM

i am installing the new Splunk App for VMware.
i have completed the esxi logs
and OVA to get performance data

but i am facing an issue in getting the vcenter data from linux vcenter appliance 6.0
as per the documentation, it was mentioned to install the universal forwarder in vcenter appliance but client is not agreeing to the same
they are able to send the data through syslog server but issue is every thing is coming as file only. but Splunk_TA_vcenter component is expecting three different inputs directory and props based on the directory and type of file , it is dividing the data in to different sourcetype
but with out any knowledge of data how can i differentiate as expected by TA .
kindly help ASAP

0 Karma
Reply

bparekh_splunk
Splunk Employee
Splunk Employee
‎06-14-2017 12:26 AM

This feature is provided in the newer version of the app which will be released in few weeks. In that, you don't need to configure inputs. You will get more detail from the Splunk docs.

0 Karma
Reply
Get Updates on the Splunk Community!

REST API Endoint to create correlation search

Hello, Is it possible to create correlation search in splunk ES app using REST API?

Does Splunk SOAR support mTLS

In the context of connecting Splunk Cloud and Phantom. Does Phantom/Splunk SOAR support mTLS?

Should our Deployment Servers have the Search Head server role on them?

all of our stuff is on premcurrently our dedicated Deployment Servers also have the Search Head role on them, ...