All Apps and Add-ons

Warning - DB Connect is running in SHCluster! Some functions will be disabled under this environment.

saranya_fmr
Communicator
  1. List item

Can this warning be ignored coz I always get this in the SH Cluster. We do not have scheduled inputs and scheduled outputs and thus we did not install the DB Connect app on the Heavy forwarders. We have it only the SH cluster.

But everytime I open the app , I see this warning. So can This be ignored or is there a way to get rid of this? Is it mandatory to install the app on the Heavy Forwarders?

  1. Also , we will use dbxlookup feature, so does this need the app to be installed on the HF?

alt text

Tags (1)
1 Solution

sloshburch
Ultra Champion

As far as it is documented, there is no way to hide the message: http://docs.splunk.com/Documentation/DBX/latest/DeployDBX/WhatsnewinSplunkDBConnect#Scheduled_tasks_...

Perhaps an alternative approach is to disable the visibility of the app for non-admins. That way the commands you want to use are available globally but the app itself is invisible other than for admins who know to ignore the message.
Make the app invisible: http://docs.splunk.com/Documentation/Splunk/latest/Admin/Managingappconfigurationsandproperties
Make sure the command have global permissions: http://docs.splunk.com/Documentation/Splunk/latest/Knowledge/Manageknowledgeobjectpermissions#Make_a...

View solution in original post

sloshburch
Ultra Champion

As far as it is documented, there is no way to hide the message: http://docs.splunk.com/Documentation/DBX/latest/DeployDBX/WhatsnewinSplunkDBConnect#Scheduled_tasks_...

Perhaps an alternative approach is to disable the visibility of the app for non-admins. That way the commands you want to use are available globally but the app itself is invisible other than for admins who know to ignore the message.
Make the app invisible: http://docs.splunk.com/Documentation/Splunk/latest/Admin/Managingappconfigurationsandproperties
Make sure the command have global permissions: http://docs.splunk.com/Documentation/Splunk/latest/Knowledge/Manageknowledgeobjectpermissions#Make_a...

saranya_fmr
Communicator

Thankyou Burch 🙂

0 Karma

sloshburch
Ultra Champion

NP! If you found that satisfactory, then please mark it as an accepted answer so others who stumble on this question will see there is a potential solution. If not, then leave it as is of course.

0 Karma

nawazns5038
Builder

I guess if we keep an app as invisible, it goes invisible to every role including admin as well.

0 Karma

sloshburch
Ultra Champion

Hmmm. I think it depends on if you removed the read permission for that role...

0 Karma
Get Updates on the Splunk Community!

Splunk Observability for AI

Don’t miss out on an exciting Tech Talk on Splunk Observability for AI!Discover how Splunk’s agentic AI ...

🔐 Trust at Every Hop: How mTLS in Splunk Enterprise 10.0 Makes Security Simpler

From Idea to Implementation: Why Splunk Built mTLS into Splunk Enterprise 10.0  mTLS wasn’t just a checkbox ...

Observe and Secure All Apps with Splunk

  Join Us for Our Next Tech Talk: Observe and Secure All Apps with SplunkAs organizations continue to innovate ...