Solved: Re: What happened to the Hadoop Connect app?

JoshWhaley · ‎04-10-2017

I'mg looking for a way to ingest data from HDFS data into Splunk Enterprise, and found several blog posts pointing to the Hadoop Connect app. Unfortunately, that seems to have been deleted (getting a 404 error). Does anyone know what happened to the app, or if there is some other way to ingest data from HDFS into Splunk 6.5?

rdagan_splunk · ‎04-12-2017

The app is back online: https://splunkbase.splunk.com/app/1180/

View solution in original post

rdagan_splunk · ‎04-12-2017

The app is back online: https://splunkbase.splunk.com/app/1180/

ChrisG · ‎04-10-2017

Do you need to ingest the data, or can you do what you need to do just by searching the data in HDFS? If you just need to use SPL to search your Hadoop, data, then you can use the virtual index and Hadoop analytics features in Splunk Enterprise 6.5. See the Splunk Analytics for Hadoop documentation.

JoshWhaley · ‎04-10-2017

Although this isn't the answer I was hoping to find, I appreciated the response nonetheless. It's frustrating that, rather than download an already created free app, my only option would now seem to be spending $3k+. I'll set this as the accepted solution however, as it would seem to be the only way to accomplish what I'm looking to do. Thanks for your time.

What happened to the Hadoop Connect app?

Enterprise Security Content Update (ESCU) | New Releases

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

Index This | What are the 12 Days of Splunk-mas?