We are upgrading Splunk Enterprise from 6.5.0 to 6.5.1. What are the steps?
See How to upgrade Splunk Enterprise in the Installation Manual. Fundamentally, you just install the maintenance release over your existing installation. The documentation I linked to explains about backing up your existing deployment and what the different procedures are for distributed and clustered environments.
FYI, we've posted an upgrade roadmap that suggests backup steps, order of operations for upgrade, and validation steps with links to the latest documentation to help with upgrade planning. Check it out and let us know if you find it helpful. What's the order of operations for upgrading Splunk Enterprise?
Hi,
If we changed the default DB location i.e. The default DB is not in SPLUNK_HOME Directory, Do we need to back up that also?
Anil
It depends. If you have indexer clustering then you already have "backups". But to be super safe you certainly can backup the indexed data.
1) Read the release notes
2) Back up $SPLUNK_DB
3) Download 6.5.1
4) Stop Splunk
5) Install 6.5.1 using the appropriate method for your platform
6) Start Splunk
This upgrade is pretty trivial and will likely have no problems.