Installation
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Dependency check for installed apps

flo_cognosec
Communicator
‎04-09-2014 02:13 AM

Hi

I am thinking on how to implement a dependency check in splunk.
Use case: My custom app requires the *nix app to be installed and I want to be able to check if it has been installed and otherwise tell the user that he has to install the *nix app first.

I don't see any "splunk" way of checking for those dependencies and alerting the user accordingly

Anybody having a good suggestion ?

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎04-09-2014 02:33 AM

Hi flo_cognosec,

inside the sideview utils app there is a key techniques document on detecting sideview utils. Maybe you could use this a sample and adapt it to your needs.

cheers, MuS

0 Karma
Reply

flo_cognosec
Communicator
‎04-14-2014 01:50 AM

The sideview utils example seem to work only with splunk 5.x 😞

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎04-09-2014 02:52 AM

Ok, you misunderstood my answer. Inside Sideview App there is an example about how to detect if Sideview is installed or not. This means if you look at this example you will find a 'native way' on how to check for installed apps.

0 Karma
Reply

martin_mueller
SplunkTrust
SplunkTrust
‎04-09-2014 02:48 AM

It's free (as in beer) for internal use.

As a rudimentary check for the *nix app you could check if the os index is present.

For a more robust check you could query this REST endpoint:

| rest splunk_server=local /services/apps/local
0 Karma
Reply

flo_cognosec
Communicator
‎04-09-2014 02:42 AM

Unfortunately I cannot assume sideview utils being installed nor do I have a license for it so I am looking for a "native" way ^^

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

 Prepare to elevate your security operations with the powerful upgrade to Splunk Enterprise Security 8.x! This ...

Get Early Access to AI Playbook Authoring: Apply for the Alpha Private Preview ...

Passionate about security automation? Apply now to our AI Playbook Authoring Alpha private preview ...

Reduce and Transform Your Firewall Data with Splunk Data Management

Managing high-volume firewall data has always been a challenge. Noisy events and verbose traffic logs often ...