Getting Data In
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

What is procedure to upgrade universal and heavy forwarders?

vrmandadi
Builder
‎09-04-2019 12:28 PM

Hello ,

We have around 13 heavy forwarders.How does the upgrade thing work , should we log into each instance and do the upgrade or is there any way to upgrade through the deployment server.The same way we have 500 + universal forwarders , what is the way to upgrade every U.F.

Thanks IN ADVANCE

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

masonmorales
Influencer
‎09-04-2019 01:29 PM

Splunk does not have a native feature for performing automatic/distributed upgrades of the software. We use Ansible internally to upgrade Splunk, but some customers use Chef, Salt, or Puppet to do it. For Windows, some customers use SCCM.

View solution in original post

0 Karma
Reply
Solved! Jump to solution

Vijeta
Influencer
‎09-04-2019 01:35 PM

@vrmandadi you should not use deployment server for performing Splunk upgrade. For the Heavy forwarders it will be just like any other Splunk Enterprise instance upgrade.
For Universal forwarders on Windows and Linux you can use deployment tool for Windows like SCCM or script for Linux.
This document will be helpful for you for upgrading UF remotely. Do check for pre-requisites and whether you really need an upgrade for UFs.

https://docs.splunk.com/Documentation/Forwarder/7.3.1/Forwarder/UpgradetheWindowsuniversalforwarder
https://docs.splunk.com/Documentation/Forwarder/7.3.1/Forwarder/Upgradethenixuniversalforwarder

0 Karma
Reply
Solved! Jump to solution
Solution

masonmorales
Influencer
‎09-04-2019 01:29 PM

Splunk does not have a native feature for performing automatic/distributed upgrades of the software. We use Ansible internally to upgrade Splunk, but some customers use Chef, Salt, or Puppet to do it. For Windows, some customers use SCCM.

0 Karma
Reply
Solved! Jump to solution

pdantuuri0411
Explorer
‎09-04-2019 12:49 PM

Writing a script should be the most easy way to upgrade the forwarders. Splunk doesn't have an option to upgrade the forwarders automatically.

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey

Can’t make it to .conf25? Join us online!

Watch Global Broadcast
Get Updates on the Splunk Community!

Community Content Calendar, September edition

Welcome to another insightful post from our Community Content Calendar! We're thrilled to continue bringing ...

Splunkbase Unveils New App Listing Management Public Preview

Splunkbase Unveils New App Listing Management Public PreviewWe're thrilled to announce the public preview of ...

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Are you leveraging automation to its fullest potential in your threat detection strategy?Our upcoming Security ...