Windows Script Input (something simple i'm sure)

hewhib · ‎10-11-2011

Guys,

Just wondering if you could help me...

When I go to add a scripted input for my Splunk App I get the following error message:

Encountered the following error while trying to save: In handler 'script': The command path `"c:\program files\splunk\etc\apps\winFW\bin\rules.py"` is not allowed for scripted inputs.

Using the following command path:

"c:\program files\splunk\etc\apps\winFW\bin\rules.py"

I have tried it with and without the " , and tried the path as a above and as it appears on the command line (i.e. "C:\Program Files\Splunk\etc\apps\winFW\bin\rules.py") Can someone explain where I am going wrong please.

Cheers

jbsplunk · ‎10-11-2011

I have one working that looks very similar to this in my inputs.conf:

[script://$SPLUNK_HOME\etc\apps\app_name\bin\script.bat]
disabled = false
index = someindex
interval = #####
sourcetype = somesourcetype

Hope this helps!

hewhib · ‎10-12-2011

Not sure what I did, but after playing around with my python script, I tried it again and it worked. But thank-you for you help, I will note the last comment, I'm sure I will need it

jbsplunk · ‎10-11-2011

Its just a batch file. If your using a python script it should be fine too, just be sure your paths are configured so that Windows understands.

Something like "stuff = open(os.path.join(os.environ["SPLUNK_HOME"], 'etc', 'apps', 'app_name', 'bin', 'scripts', 'yourscript.py'),'r')" would do the trick.

hewhib · ‎10-11-2011

in your inputs.conf file, I'm assuming you have a batch file not a python script? or do you have a batch file calling the python script.

Windows Script Input (something simple i'm sure)

Fueling your curiosity with new Splunk ILT and eLearning courses

Splunk AI Assistant for SPL 1.1.0 | Now Personalized to Your Environment for Greater ...

Unleash Unified Security and Observability with Splunk Cloud Platform