Getting Data In

assigning read permission for the log file on Linux

Path Finder

We need to monitor a log file on linux with the splunk forwarder(splunk user account which is local). Log file is owned by another user account. Tried assigning the read permission using the chmod command but this not working since log file get rolled over when it reached to 10MB. So permissions were not carried to the file. Can some help me with the best practice you follow to assign the permissions to log file.


Tags (1)
0 Karma


You generally need to modify the process that creates the files or put them in a directory that forces the correct permissions on all files within.

0 Karma
Get Updates on the Splunk Community!

Observability Highlights | January 2023 Newsletter

 January 2023New Product Releases Splunk Network Explorer for Infrastructure MonitoringSplunk unveils Network ...

Security Highlights | January 2023 Newsletter

January 2023 Splunk Security Essentials (SSE) 3.7.0 ReleaseThe free Splunk Security Essentials (SSE) 3.7.0 app ...

Platform Highlights | January 2023 Newsletter

 January 2023Peace on Earth and Peace of Mind With Business ResilienceAll organizations can start the new year ...