Splunk Dev
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Why am I unable to set up logging to debug my python script?

clorne
Communicator
‎10-22-2015 12:45 AM

Hello,

I am trying to activate the logging in order to debug my python script.
I have followed the documentation located at:
http://docs.splunk.com/Documentation/Splunk/6.3.0/AdvancedDev/ModInputsLog

SPLUNK_HOME/etc/log.cfg had already category.ExecProcessor=INFO

And the code is basically the same as the example:

set up logging suitable for splunkd consumption

logging.root
logging.root.setLevel(logging.DEBUG)
formatter = logging.Formatter('%(levelname)s %(message)s')
handler = logging.StreamHandler(stream=sys.stderr)
handler.setFormatter(formatter)
logging.root.addHandler(handler)
logging.info("LOGGING INFO HELLO.")
logging.debug("LOGGING DEBUG HELLO")

My entry is not logged in SPLUNK_HOME/var/log/splunk/splunkd.log
I have no index=_internal ExecProcessor.
I found an index names splunklogger, but it does not contain any event.

Regards

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎11-11-2015 12:28 PM

Hi clorne,

did you import logging in your script as stated in the example?

cheers, MuS

0 Karma
Reply

clorne
Communicator
‎11-12-2015 12:02 AM

Hello MuS,
Yes I did.
Is the logging working correctly with the procedure provided by Splunk documentation?

Regards

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎11-12-2015 12:31 AM

Yes, that's the way to log events from your script into splunkd.log. Here is another example http://docs.splunk.com/Documentation/Splunk/6.3.0/AdvancedDev/ModInputsExample

0 Karma
Reply
Get Updates on the Splunk Community!

New Year, New Changes for Splunk Certifications

As we embrace a new year, we’re making a small but important update to the Splunk Certification ...

[Puzzles] Solve, Learn, Repeat: Unmerging HTML Tables

[Puzzles] Solve, Learn, Repeat: Unmerging HTML TablesFor a previous puzzle, I needed some sample data, and ...

Enterprise Security (ES) Essentials 8.3 is Now GA — Smarter Detections, Faster ...

As of today, Enterprise Security (ES) Essentials 8.3 is now generally available, helping SOC teams simplify ...