Deployment Architecture
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

What changed that's requiring a restart?

bdruth
Path Finder
‎09-29-2010 03:56 PM

We're seeing a banner indicating that a restart is required to make changes effective. But nobody knows what changed (the users with admin rights appear to not have made any changes). Before restarting (and potentially breaking something), is there a way to know what change Splunk thinks it needs to restart for?

Tags (2)
Reply

fk319
Builder
‎02-16-2011 04:44 PM

Is there a place that shows what could have been changed?

0 Karma
Reply

Genti
Splunk Employee
Splunk Employee
‎09-30-2010 12:33 AM

you could try a ls on the config files and sort by modified date. But i think it is almost impossible to know for certain what config changed. Unless you have fschange on splunk config files..

0 Karma
Reply

gkanapathy
Splunk Employee
Splunk Employee
‎09-30-2010 03:45 AM

this change is triggered by actions in the UI, not by modifications of config per se. So it is possible that config might not have been changed, or changed and changed back, or changed innocuously. (e.g., doing a "save" on any index editing screen, even without making changes) will cause this banner to appear.

Reply
Get Updates on the Splunk Community!

Splunk Platform | Upgrading your Splunk Deployment to Python 3.9

Splunk initially announced the removal of Python 2 during the release of Splunk Enterprise 8.0.0, aiming to ...

From Product Design to User Insights: Boosting App Developer Identity on Splunkbase

co-authored by Yiyun Zhu & Dan Hosaka Engaging with the Community at .conf24 At .conf24, we revitalized the ...

Detect and Resolve Issues in a Kubernetes Environment

We’ve gone through common problems one can encounter in a Kubernetes environment, their impacts, and the ...