Re: Feature Request: Docker TimeZone

bstreber · ‎02-05-2020

Currently Splunk's Docker container does not support TZ or TIMEZONE options. I am able to change the TZ for a individual user but this still causes discrepancies in some log files and times. Additionally for free users who are unable to set a TZ for users this means they are stuck on UTC.

codebuilder · ‎02-17-2020

You'll have to rebuild the Docker image using updated TZ in the Docker Makefile.

----
An upvote would be appreciated and Accept Solution if it helps!

cloutid · ‎02-14-2020

Hi, have you tried modifying the Dockerfile and set the timezone there?

bstreber · ‎02-14-2020

Yeah I attempted TIMEZONE = America/Vancouver and when I enter "date" in the console it would respond with the UTC time but specify the timezone I selected.

cloutid · ‎02-14-2020

Here's how i did it in my dockerfile and it seems to be working:

ARG SPLUNK_VERSION

FROM splunk/splunk:${SPLUNK_VERSION}

ENV TZ=America/Toronto

USER root

RUN set -eux chown -R splunk:splunk /opt/splunk/etc/; \
chmod -R 755 /opt/splunk/etc/; \
ln -snf /usr/share/zoneinfo/$TZ /etc/localtime && echo $TZ > /etc/timezone;

USER ansible

Feature Request: Docker TimeZone

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Data Management Digest – May 2026

Index This | What is feather-light but cannot be held long?

.conf26 Registration is Live: Secure Your Early Bird Pass Now

Join the Conversation