Deployment Architecture

Can you help me install a search head (SH) cluster?

siemteam
Explorer

Hello,

I'm trying to deploy a SH Cluster, and I found the following issue:

After editing server.conf (local folder) to add the following configuration lines:

Modify:
[general]
pass4SymKey = myKey

Add:
[shclustering]
shcluster_label = myLabel
pass4SymKey = myKey

When I try to restart Splunk, the following error message appears:

Invalid key in stanza [general] in /opt/splunk/etc/system/local/server.conf, line 4: pass4SymKey  (value:  myKey).
Invalid key in stanza [shclustering] in /opt/splunk/etc/system/local/server.conf, line 32: pass4SymKey  (value:  myKye).

On each SH Cluster member, I'm using the following command:

/opt/splunk/bin/splunk init shcluster-config -mgmt_uri https://SHMEMBER:8089 -replication_port 8080 -conf_deploy_fetch_url https://DEPLOYMENTSERVER:8089 -secret myKey

What's wrong?

Thanks

0 Karma
1 Solution

dkeck
Influencer

HI,

its pass4SymmKey

with double m

also note that mykey has to be plain text, not encrypted

View solution in original post

0 Karma

siemteam
Explorer

Thank you so much!!

0 Karma

dkeck
Influencer

Happy that it helped 🙂

0 Karma

dkeck
Influencer

HI,

its pass4SymmKey

with double m

also note that mykey has to be plain text, not encrypted

0 Karma
Get Updates on the Splunk Community!

Splunk Observability Cloud's AI Assistant in Action Series: Auditing Compliance and ...

This is the third post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how to ...

Splunk Community Badges!

  Hey everyone! Ready to earn some serious bragging rights in the community? Along with our existing badges ...

What You Read The Most: Splunk Lantern’s Most Popular Articles!

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...