Monitoring Splunk
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Monitoring Splunkd CPU utilization for windows universal forwarder?

Siddharth
Path Finder
‎03-09-2023 02:35 AM

Hi All ,

We need to monitor the CPU utilization of Splunkd. we have installed splunk UF on windows server and want to continuously monitor the CPU Utilization used by splunk uf which is installed on windows servers 

Thanks a lot in advance for the help  

Labels (1)
Labels
0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎03-09-2023 02:55 AM

Hi @Siddharth,

I suppose that you already configured your UF to send logs to your Indexers and that you already created an index to archive your data.

So, you have to install in that UF also the Splunk_TA_Windows Add-On (https://splunkbase.splunk.com/app/742) enabling the CPU utilization metrics.

Then you can run a search with cpu utilization that you can find in many apps as Splunk Monitoring Infrastructure dashboard app (https://splunkbase.splunk.com/app/5306) or others.

If you don't find anything that solves your need, I'll send you a dashboard.

Ciao.

Giuseppe

0 Karma
Reply

Siddharth
Path Finder
‎03-13-2023 03:39 AM

Hi @gcusello 

 

Thanks for the reply but the problem with this solution is it will provide me the overall cpu utilization of the server but i need the cpu utilization of splunkd process on this server not the complete cpu utilization 

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎03-13-2023 03:43 AM

Hi @Siddharth,

one of the scripts in the above Add-On (it should be "top") gives your the CPU utilization for each process, so you can filter the results for the "splunkd" process.

Ciao.

Giuseppe

0 Karma
Reply

Siddharth
Path Finder
‎03-20-2023 05:01 AM

Hi @gcusello  ,

This is a windows monitoring not the linux monitoring if you can help me with windows add-on it would be great 

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas

Why Splunk Customers Should Attend Cisco Live 2026 Las Vegas     Cisco Live 2026 is almost here, and this ...

Data Management Digest – May 2026

Welcome to the May 2026 edition of Data Management Digest!   As your trusted partner in data innovation, the ...