When I run
splunk cmd, I can execute any external system command using Splunk's context.
I want to combine that with the
-uri parameter to be able to send remote commands to Universal Forwarders.
cmd engine treats
-uri as a part of the command itself, for example:
splunk cmd dir -uri https://uf_hostname:8089
dir: cannot access https\://uf_hostname\:8089: No such file or directory
How can I send the command to a remote Splunk instance?
Hi, you might want to look at clustershell for this functionality. It's a little tricky to configure but runs nicely on all kind of lx clusters
see https://clustershell.readthedocs.io/en/latest/ for details and sources...
Thank you for the answer, but this method is extremely inconvenient as it requires a lot of effort and time to issue a single command.
I'm looking for a semi-interactive way to make use of my existing Splunk deployment to perform simple management tasks in my environment, without the need to fully connect to the server.