Splunk Enterprise

How to Update openssh with splunk enterprise server?

New Member

Hi, I have a question and i hope received anwser the soon.

I am using Splunk Enterprise and install in server CentOS 7. Openssh is using vesion 7.4 and 8.1. I want update openssh in all splunk servers (8 server CentOS 7 include 2 search head cluster, 2 indexer cluster, 2 heavy forwarder, 1 deployment server and 1 master node) from 7.4, 8.1 to lastest openssh version still supported on CentOS 7. Version of splunk enterprise use is 8.0.7. 

I would like to ask what effect the upgrade will have on Splunk's performance and what to prepare on Splunk before updating OpenSSH

Thanks for all!

Tags (2)
0 Karma



updating OpenSSH shouldn’t affect your splunk installation. Of course if there are lot of other packages which are a requirement for updating OpenSSH, then the story is different. If all your servers are equal you should start with DS and check what will happen. Then go forward with others. Updating only OpenSSH shouldn’t need a server reboot, just restart sshd.

r. Ismo

0 Karma
Get Updates on the Splunk Community!

Splunk Observability Cloud | Unified Identity - Now Available for Existing Splunk ...

Raise your hand if you’ve already forgotten your username or password when logging into an account. (We can’t ...

Index This | How many sides does a circle have?

February 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

Registration for Splunk University is Now Open!

Are you ready for an adventure in learning?   Brace yourselves because Splunk University is back, and it's ...