Getting Data In

Splunk FOrwarder information in the API

akrai
New Member

I need to know if my asset/ hosts/devices has splunk forwarder installed . Which API would give me that information, and what would be the column name in that API.

Tags (1)
0 Karma
1 Solution

nabeel652
Builder

Not sure about an API but you could do a powershell script like this:

    $computers = "Computer1", "Computer2", "Computer3", "Computer4"


foreach ($computer in $computers){ 
    try {
        $result = Get-Service -ComputerName $computer | where {$_.Name -like "SplunkForwarder"}
    }
    catch {
        Write-Host "Some problem occured accessing" $computer -ForegroundColor Red
    }
    if ($result -ne $null) {
        Write-Host $computer "Has Splunk Forwarder Installed" -ForegroundColor Green
    }
    $result = $null
}

View solution in original post

0 Karma

nabeel652
Builder

Not sure about an API but you could do a powershell script like this:

    $computers = "Computer1", "Computer2", "Computer3", "Computer4"


foreach ($computer in $computers){ 
    try {
        $result = Get-Service -ComputerName $computer | where {$_.Name -like "SplunkForwarder"}
    }
    catch {
        Write-Host "Some problem occured accessing" $computer -ForegroundColor Red
    }
    if ($result -ne $null) {
        Write-Host $computer "Has Splunk Forwarder Installed" -ForegroundColor Green
    }
    $result = $null
}
0 Karma

akrai
New Member

Thanks for the response,, Appreciate it.. I am specifically looking for the API which can bring in the splunk forwarder information.
My usecase would be enterprise wide and would not be feasible to get a report for all the splunk forwarder information.

0 Karma
Get Updates on the Splunk Community!

See just what you’ve been missing | Observability tracks at Splunk University

Looking to sharpen your observability skills so you can better understand how to collect and analyze data from ...

Weezer at .conf25? Say it ain’t so!

Hello Splunkers, The countdown to .conf25 is on-and we've just turned up the volume! We're thrilled to ...

How SC4S Makes Suricata Logs Ingestion Simple

Network security monitoring has become increasingly critical for organizations of all sizes. Splunk has ...