Splunk Enterprise Security
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Many new apps in Enterprise Security - can I disable them?

echojacques
Builder
‎02-05-2014 11:54 AM

I upgraded to the latest version of Enterprise Security (v6.0) and it installed many new apps and add-ons for systems/applications/sources that we don't have including:

  • Splunk Add-on for AirDefense
  • Splunk Add-on for CEF
  • Splunk Add-on for Juniper
  • Splunk Add-on for RSA
  • and many more...

My question is, can I disable the apps/add-ons that I don't need or will this adversely affect ES? Also, after disabling the app, how can I fully delete it so that it no longer appears in the apps list (I like to run lean and prefer not to have unused software installed).

Thanks!

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

jcoates_splunk
Splunk Employee
Splunk Employee
‎02-05-2014 11:58 AM

Hi,

You can disable the ones that begin with TA- or Splunk_TA_. Deleting them is an option as well, if you like, delete the folders from filesystem.

View solution in original post

Reply
Solved! Jump to solution
Solution

jcoates_splunk
Splunk Employee
Splunk Employee
‎02-05-2014 11:58 AM

Hi,

You can disable the ones that begin with TA- or Splunk_TA_. Deleting them is an option as well, if you like, delete the folders from filesystem.

Reply
Solved! Jump to solution

echojacques
Builder
‎02-05-2014 12:02 PM

I see the TA- and Splunk_TA now... those are the folder names. Thanks again!

0 Karma
Reply
Solved! Jump to solution

echojacques
Builder
‎02-05-2014 12:00 PM

Ok and how about the ones that begin with "Splunk Add-on for ...".

All of the apps that I'd like to disable begin with Splunk Add-on...

Thanks

0 Karma
Reply
Get Updates on the Splunk Community!

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

For Splunk Cloud customers, understanding and optimizing Splunk Virtual Compute (SVC) usage and resource ...

Automatic Discovery Part 3: Practical Use Cases

If you’ve enabled Automatic Discovery in your install of the Splunk Distribution of the OpenTelemetry ...