Hi
I create a script whit python and i configure the commands.conf but appears the follow message: "External search command exited unexpectedly with non-zero error code 1"
commands.conf
[sshprueba8]
chunked = true
filename = sshprueba8.py
script
import paramiko
import sys
import time
HOST = "172.16.10.100"
USER = "admin"
PASS = "admin"
ITERATION = 1
def fn():
client1=paramiko.SSHClient()
client1.set_missing_host_key_policy(paramiko.AutoAddPolicy())
client1.connect(HOST,username=USER,password=PASS)
stdin, stdout, stderr = client1.exec_command('show ip interface brief')
saveoutput = open("/Users/RicardoMedina/Documents/Archivo de prueba.txt", "a")
saveoutput.write(stdout.read())
print stdout.read()
fn()
Solution is in this thread
Does this script run properly when used independently of Splunk?
Does this script run properly when using the same account as Splunk?
Splunk has its own copy of python which it will use to execute scripts. Does the Splunk python have the libraries that you need?
Did you look at the search.log that was created when you tried to use this command?