Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to determine which apps were downloaded and by what clients from the Deployment Server?

muebel
SplunkTrust
SplunkTrust
‎04-04-2016 08:44 AM

If I look at the Forwarder Management console of the Deployment Server, I'll find a summary of App Downloads in the last hour.

Is there any way to identify exactly which apps were downloaded, and by what clients?

0 Karma
Reply

lguinn2
Legend
‎04-04-2016 10:14 AM

Ah, this information is in the _internal index. The exact search will vary based on your version of Splunk, so you may have to play around with this a bit:

index=_internal component=DeployedApplication OR component= PackageDownloadRestHandler  sourcetype=splunkd 
| table _time log_level host app message
Reply
Get Updates on the Splunk Community!

Splunk Observability Synthetic Monitoring - Resolved Incident on Detector Alerts

We’ve discovered a bug that affected the auto-clear of Synthetic Detectors in the Splunk Synthetic Monitoring ...

Video | Tom’s Smartness Journey Continues

Remember Splunk Community member Tom Kopchak? If you caught the first episode of our Smartness interview ...

3-2-1 Go! How Fast Can You Debug Microservices with Observability Cloud?

3-2-1 Go! How Fast Can You Debug Microservices with Observability Cloud? Learn how unique features like ...