Re: Is it possible to upload a CSV file via comman...

ruiwit · ‎11-30-2016

I'm trying to automatize a task that consists in the topics:
-Clean eventdata from Splunk (Done)
-Upload CSV file to replace the data of old version of the file
-show dashboard(Done)

Is it possible to do the 2nd phase through the command line?

Thanks and regards

koshyk · ‎11-30-2016

csv lookups exists in each of the apps "lookups" directory. This is a dynamic directory and it is just matter of copying to this directory
Depends on the complexity of your Splunk Installation

In STandalone environment, just find a automated method to copy your csv file to the "lookups" directory
In clustered env, upload to deployer lookups directory and do push from deployer

I use "rsync" in Linux to copy the lookup files, so it updates only when there is a change to file.

richgalloway · ‎11-30-2016

The oneshot command may be what you're looking for. Check out http://docs.splunk.com/Documentation/Splunk/6.5.1/Data/MonitorfilesanddirectoriesusingtheCLI.

---
If this reply helps you, Karma would be appreciated.

Is it possible to upload a CSV file via command line?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Announcing Modern Navigation: A New Era of Splunk User Experience

Modernize your Splunk Apps – Introducing Python 3.13 in Splunk

Step into “Hunt the Insider: An Splunk ES Premier Mystery” to catch a cybercriminal ...

Join the Conversation