Installation
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

SAP Business Objects Logs in Splunk

SlothB77
Engager
‎08-06-2018 11:36 AM

Our organization has Splunk Universal Forwarder installed on the same server our SAP Business Objects server is installed. We have SAP Business Objects logs in two folders:

  • Our SAP BusinessObjects Enterprise logs
  • Tomcat logs

Is there a way to point the Splunk forwarder to those folders to collect those logs? Or, if it is already doing so, is there a way to returns just the logs from those folders in a search?

0 Karma
Reply

becksyboy
Contributor
‎05-21-2019 07:48 AM

Hi @SlothB77 how did you SAP BO logs onboardng go? We are looking to do the same. Do you have any tips for this and did you have to write any custom props/transforms?

0 Karma
Reply

renjith_nair
Legend
‎08-06-2018 08:25 PM

@SlothB77,

You can set up a monitor in your splunk forwarder's $SPLUNK_HOME/etc/system/default/inputs.conf to monitor the log from the folders . Sample configuration

[monitor://path/to/file]
sourcetype="type of your log"
index="index you want to use for these logs"
setting_n-1 = value
settings_n = value

Details are in http://docs.splunk.com/Documentation/Splunk/7.1.2/Data/Monitorfilesanddirectorieswithinputs.conf

Once you have the logs in splunk , you could just search for the source or sourceype what you have used above.

Eg : 

source="path to SAP enterprise log" OR source="path to tomcat log"
---
What goes around comes around. If it helps, hit it with Karma 🙂
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Event Series: Telemetry Pipeline Management

Balancing Scale and Spend: Gaining Control Over High-Volume Metrics in Splunk Observability Cloud As ...

Kick the Tires Before You Commit: A Hands-On Tour of the Splunk Observability Cloud ...

Evaluating an enterprise observability platform usually goes like this: fill out a form, get a free trial with ...

Deep insights, no barriers: Splunk Observability Cloud Free Edition

As software delivery cycles continue to accelerate, observability shouldn’t be a luxury — it should be a ...