Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

using the Resource Kit with the free license

oogabooga
Explorer
‎10-19-2012 03:33 PM

I'm trying to connect to Splunk via the Resource Kit and it gives me an unauthorized error.

This worked great with the Enterprise License trial, but now I can't connect even with the admin ID and password.

Invoke-HTTPPost : Exception calling "GetResponse" with "0" argument(s): "The remote server returned an error: (401) Unauthorized."

What gives? I've heard from several different sources that if you have less than 500mb per day, this is a great way to track your logs. I'd like to send my logs to Splunk with the resource kit. Specifically Write-SplunkMessage cmdlet.

Is there a special way for me to connect with the free license using the Resource Kit?

Thanks in advance for your help.

Tags (1)
0 Karma
Reply

oogabooga
Explorer
‎10-22-2012 06:45 PM

gpduck saved the day. Here are the details:

http://www.oogabooga.info/2012/10/splunk-powershell-and-free-license.html

Thanks again everybody who helped out.

Reply

ChrisG
Splunk Employee
Splunk Employee
‎10-22-2012 09:02 AM

Copying in this info from Twitter @bsonposh (might be an exchange with you, actually, but putting it in here for others to see):

The problem is that most of the cmdlets assume authentication. Try -noauth on invoke-splunkrestapi

  • -noauth switch seems to work, but Write-SplunkMessge had auth wrapped all around it and other functions that it calls. 😞

I know… We need to fix that in the next release 😞

0 Karma
Reply

oogabooga
Explorer
‎10-22-2012 06:44 PM

ha, that was me. I'm posting the workaround in the next thread below.

0 Karma
Reply

ChrisG
Splunk Employee
Splunk Employee
‎10-19-2012 04:10 PM

I don't know much about the PowerShell Resource Kit, but Splunk free does not have authentication or access control--no login. See More About Splunk Free in the Admin Manual.

0 Karma
Reply

oogabooga
Explorer
‎10-22-2012 08:22 AM

Yeah, I don't care about auth. I just want to send it logs to keep track of what my scripts are doing. I'm working around the issue now by sending syslog, but I'd like to use the Resource Kit if possible.

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...