Deployment Architecture
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

How to search what universal forwarder version and machine type my hosts are running and save this as a report?

pil321
Communicator
‎11-10-2014 08:15 AM

The Deployment Monitor gives you some good information and the Forwarder Manager gives you some good info as well. But, they don't let you save the information they collect as a report.

So, I would like to be able to do a search to find out what version universal forwarder my hosts are running (which Deployment Monitor does) AND what machine type they are running (which Forwarder Management does) AND be able to save the search as a report (which the Search & Reporting app does). I can't get a peek as to how the apps get this information, since they don't give you a way to open them in search mode.

Reply
1 Solution
Solved! Jump to solution
Solution

mkinsley_splunk
Splunk Employee
Splunk Employee
‎11-10-2014 11:18 AM

We highly recommend you use the Splunk on Splunk app S.o.S instead of Deployment Monitor. If you haven't already, try it out. You'll really like what you see.

In order to see what searches have been run , no matter what app you're in, click on the Activity menu and choose Jobs from the dropdown. From here you will be able to see the exact search that was run. Please note the context dropdowns (filtered by app and owner). If you click on the search text (it shows up as a link), it will open in the search view.

View solution in original post

Reply
Solved! Jump to solution
Solution

mkinsley_splunk
Splunk Employee
Splunk Employee
‎11-10-2014 11:18 AM

We highly recommend you use the Splunk on Splunk app S.o.S instead of Deployment Monitor. If you haven't already, try it out. You'll really like what you see.

In order to see what searches have been run , no matter what app you're in, click on the Activity menu and choose Jobs from the dropdown. From here you will be able to see the exact search that was run. Please note the context dropdowns (filtered by app and owner). If you click on the search text (it shows up as a link), it will open in the search view.

Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...