Knowledge Management
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Splunk: How to backup/restore Splunk's data?

htkwan
Path Finder
‎02-04-2020 08:26 PM

Hello,
Pls advise how one can backup from an existing splunk (7.0) and restore the saved splunk's data to another new splunk (latest version). I can schedule a shutdown for the backup/restore. Thanks

Tags (1)
0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎02-05-2020 04:23 AM

Hi @htkwan,
if you want to upgrade an existing installation, you could backup your data and installation for sure and then upgrade your Splunk installation to the new version.
If instead you want to copy installation to a new instance, make restore of the backupped instace (changing hostnames) and then upgrade to the latest version.
In other words, the best approach is to make backup and restore of the old versione and to leave Splunk automatic procedure to upgrade installation.
You could also copy some file of $SPLUNK_HOME/etc from the old to the new installation, but I don't like it!

Ciao.
Giuseppe

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Painting a Clearer Picture: Creating Cross-Domain Visibility with AI Canvas

    Thursday, June 25, 2026  |  11AM PDT / 2PM EDT  Duration: 1 Hour (Includes live Q&A) Register to ...

Analytics Workspace deprecation

As of Splunk Cloud Platform 10.4.2604 and Splunk Enterprise 10.4, Analytics Workspace is now deprecated. ...

Splunk Developer Day Recap: Building, Publishing, and Growing on the Splunk Platform

Splunk Developer Day brought the Splunk developer community together for a practical look at what it means to ...