Knowledge Management
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Splunk: How to backup/restore Splunk's data?

htkwan
Path Finder
‎02-04-2020 08:26 PM

Hello,
Pls advise how one can backup from an existing splunk (7.0) and restore the saved splunk's data to another new splunk (latest version). I can schedule a shutdown for the backup/restore. Thanks

Tags (1)
0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎02-05-2020 04:23 AM

Hi @htkwan,
if you want to upgrade an existing installation, you could backup your data and installation for sure and then upgrade your Splunk installation to the new version.
If instead you want to copy installation to a new instance, make restore of the backupped instace (changing hostnames) and then upgrade to the latest version.
In other words, the best approach is to make backup and restore of the old versione and to leave Splunk automatic procedure to upgrade installation.
You could also copy some file of $SPLUNK_HOME/etc from the old to the new installation, but I don't like it!

Ciao.
Giuseppe

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Deep Dive: Accelerate threat investigation with Splunk’s AI Assistant in Security

AI is one of the biggest topics in the market today, and for security teams, its value goes far beyond the ...

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...

Detection Engineering Office Hours: Real-World Troubleshooting & Q&A

[REGISTER HERE] This thread is for the Community Office Hours session on Detection Engineering Office Hours: ...