SOAR (Phantom) Installation in existing server with RPM

New Member

Hi Everyone,

I spinned up a new machine(VM) in Azure and trying to install the phantom (SOAR) using RPM file. 

So I have partitioned & mounted 700 GB to /Opt and 5 GB to /tmp directory.

While installing the package, I am getting below error. Unable to find the answers for this.


Can someone help on this?


Failed to run install for git

Error: Package: git-2.16.1-1.el7.x86_64 (phantom-base)
Requires: perl(SVN::Ra)
Error: Package: git-2.16.1-1.el7.x86_64 (phantom-base)
Requires: perl(SVN::Delta)
Error: Package: git-2.16.1-1.el7.x86_64 (phantom-base)
Requires: perl(SVN::Core)




Santhosh Govindhan

Labels (1)
0 Karma

Splunk Employee
Splunk Employee

See KB 65 at  ( There is a specific statement about additional modules “Note for AWS Users:
RPM's will look different. For AWS Red Hat images, the repo name for the packages in RedHat's rhel-7-server-optional-rpms will appear as: rhui-REGION-rhel-server-optional
These can be enabled in the /etc/yum.repos.d/redhat-rhui.repo file. “

Go into the repo file and set enable to 1 and retry the phantom install. 

Tags (1)
0 Karma
Get Updates on the Splunk Community!

Devesh Logendran, Splunk, and the Singapore Cyber Conquest

At this year’s Splunk University, I had the privilege of chatting with Devesh Logendran, one of the winners in ...

There's No Place Like Chrome and the Splunk Platform

WATCH NOW!Malware. Risky Extensions. Data Exfiltration. End-users are increasingly reliant on browsers to ...

Customer Experience | Join the Customer Advisory Board!

Are you ready to take your Splunk journey to the next level? 🚀 We invite you to join our elite squad ...