Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Distributed deployment using ansible-role-for-splunk?

mickey
Loves-to-Learn
‎03-06-2023 03:59 AM

I successfully installed splunk using the ansible-role-for-splunk one a single machine. It worked as expected. I am trying now to deploy a distributed splunk system (7 VMs in total). I prepared the inventory based on https://github.com/splunk/ansible-role-for-splunk/blob/master/environments/production/inventory.yml. when i ran the playbook, the bahviour is 7 individual installations of splunk instead of a distributed installation with indexer cluster, search head etc. My understanding was that based on the group name in the inventory, ansible role will install only the required components. Is it not true?

I am posting my playbook and inventory file (as first 2 replies). thanks

mickey_0-1678109947656.png

 

Labels (1)
Labels
0 Karma
Reply

mickey
Loves-to-Learn
‎03-13-2023 06:14 AM

my understand is that the above ansible role will install splunk on al the nodes and based on the configurationf passed to the node, the node can play a different role (indexer, cluster manager etc.)

0 Karma
Reply

mickey
Loves-to-Learn
‎03-06-2023 04:00 AM

Here is the inventory file:

all:
  children:
    full:
      children:
        clustermanager:
          hosts:
            lab-splunk-util:

        licensemaster:
          hosts:
            lab-splunk-util:

        # Distributed Management Console
        dmc:
          hosts:
            lab-splunk-util:

        deploymentserver:
          hosts:
            lab-splunk-depl:

        #Search head
        search:
          children:
            searchhead:
              hosts:
                lab-splunk-sh:

        heavyforwarder:
          hosts:
            lab-splunk-hf:

        indexer:
          hosts:
            lab-splunk-idx0:
            lab-splunk-idx1:
            lab-splunk-idx2:
0 Karma
Reply

mickey
Loves-to-Learn
‎03-06-2023 04:01 AM

Here is the playbook. Note that I installed the role ansible-role-for-splunk.

---
- hosts: all
  become: true
  tasks:
    - name: Install or Upgrade Splunk
      include_role:
        name: ansible-role-for-splunk
0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Painting a Clearer Picture: Creating Cross-Domain Visibility with AI Canvas

    Thursday, June 25, 2026  |  11AM PDT / 2PM EDT  Duration: 1 Hour (Includes live Q&A) Register to ...

Analytics Workspace deprecation

As of Splunk Cloud Platform 10.4.2604 and Splunk Enterprise 10.4, Analytics Workspace is now deprecated. ...

Splunk Developer Day Recap: Building, Publishing, and Growing on the Splunk Platform

Splunk Developer Day brought the Splunk developer community together for a practical look at what it means to ...