Hi everyone,
I was wondering if anyone here has got a wide range of experience in administrating and maintaining a healthy splunk environment, and would be willing to share some of his/hers best practises.
I just want to learn more about how to keep splunk healthy. Besides the MC (Monitoring Console) and several alerts to reoccurring issues, what do you do on a daily basis, or what did you automated to make sure your environment (costumer environment) is running healthy?
I recently discovered trackme, an app that really helps with the pain of data sources suddendly missing.
(https://splunkbase.splunk.com/app/4621/)
Are there any other helpful apps that you would recommend for this kind of purpose?
All kind of ideas/hints are appreciated.
Thank you
Kind Regards
David
Splunk had one inbuilt.
Find the health check at Monitoring Console > Health Check. Start the health check by clicking Start.
It will give you many details you require
Thank you for contributing, but this is not what I was looking for. I am looking for automated ways beside the Monitoring Console.
https://splunkbase.splunk.com/app/3796/
Enable the alerts in this app. Up vote the answer if you like it.