Deployment Architecture
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
Solved! Jump to solution

Deployer overwritting app configuration

coreyf311
Path Finder
‎10-15-2018 07:36 AM

I created a barebones app on the deployer, copied it to shcluster/apps directory and pushed it to the 6 nodes of our SHC. Then, I configured the app from within the SHC with saved searches, dashboards, setup the NAV bar the way I wanted, etc. Same thing I have done many many times. A second push from the deployer seems to reset this app back to barbones. All the previous configuration is gone. This happened twice. Configured the app and it gets reset back to barebones after another push from the deployer.

splunk enterprise version 7.0.2

Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

coreyf311
Path Finder
‎11-01-2018 08:49 AM

turns out an old, thought to be decomm'd server that WAS our old deployer was turned on again and pushing bundles to the SHC via a script we have running. DOH

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

coreyf311
Path Finder
‎11-01-2018 08:49 AM

turns out an old, thought to be decomm'd server that WAS our old deployer was turned on again and pushing bundles to the SHC via a script we have running. DOH

0 Karma
Reply
Solved! Jump to solution

somesoni2
Revered Legend
‎10-15-2018 07:56 AM

How are you configuring those searches/navigations, updates from Splunk Web UI or directly on filesystem of the SHC members? If directly on file system, which app sub directories (default or local) you're creating those objects?

0 Karma
Reply
Solved! Jump to solution

coreyf311
Path Finder
‎10-15-2018 08:26 AM

Splunk Web. I can confirm that the changes where replicated to all members before being wiped by the deployer.

0 Karma
Reply
Solved! Jump to solution

somesoni2
Revered Legend
‎10-15-2018 10:59 AM

Whats the app.conf value you're using on SHC Deployer (with your barebones app directory)? I use something like this and it works fine.

[install]
state = enabled

[ui]
is_visible = 1
label = App Title

[launcher]
author = AuthorName
description = App Description
version = 1.0
0 Karma
Reply
Solved! Jump to solution

coreyf311
Path Finder
‎10-17-2018 04:22 AM

[install]
is_configured = 0

[ui]
is_visible = 1
label = App Title

[launcher]
author = AuthorName
description = App Description
version = 1.0

This is how the app.conf was configured when I created the barebones app in the deployers splunk web. Its the same as many many other apps we have created in the same fashion and pushed out. Once the barebones app is pushed to the cluster, we do the configuration with the SHC. None of these other apps have the same issue.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

We are excited to announce that the upcoming releases of Splunk Enterprise 10.2.x and Splunk Cloud Platform ...

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

After a whole week of being on call, you fell asleep on your keyboard, and you hit a sequence of buttons that ...