Getting Data In
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Why am I unable to connect to Splunk cloud from universal forwarder?

yantriks
Engager
‎10-08-2018 02:32 AM

I have installed the universal forwarder according to

http://docs.splunk.com/Documentation/SplunkCloud/7.0.5/User/ForwardDataToSplunkCloudFromLinux

But in Step 5, I am not able find my host on Splunk cloud.

I also tried adding the forward server using "splunk add forward-server prd-p-npv9nbngb7j9.cloud.splunk.com:9997" and manually added monitor to inputs.conf.

telnet prd-p-npv9nbngb7j9.cloud.splunk.com 9997 -->gave a timeout

0 Karma
Reply

kmorris_splunk
Splunk Employee
Splunk Employee
‎10-25-2018 01:30 PM

You need to log into your cloud instance and download the credentials app, I believe it is under the Universal Forwarder app on the left hand side. This app will point to your cloud instance and also contains the certificates for secure sending of your data.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Observability Simplified: Combining User Experience, Application Performance & ...

Tech Talk Observability Simplified: Combining User Experience, Application Performance & Network ...

Event Series May & June: From Network Visibility to Service Intelligence

Unifying the Network: Moving from Alert Noise to Service Intelligence with Splunk ITSI In today’s hybrid ...

Global Splunk User Group Events: May + June 2026

Your Splunk Community Awaits: Discover Upcoming User Group Events Worldwide    Staying ahead in the fast-paced ...