Splunk Enterprise
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to Update openssh with splunk enterprise server?

DatDuongVNCSG
New Member
‎08-17-2023 07:53 PM

Hi, I have a question and i hope received anwser the soon.

I am using Splunk Enterprise and install in server CentOS 7. Openssh is using vesion 7.4 and 8.1. I want update openssh in all splunk servers (8 server CentOS 7 include 2 search head cluster, 2 indexer cluster, 2 heavy forwarder, 1 deployment server and 1 master node) from 7.4, 8.1 to lastest openssh version still supported on CentOS 7. Version of splunk enterprise use is 8.0.7. 

I would like to ask what effect the upgrade will have on Splunk's performance and what to prepare on Splunk before updating OpenSSH

Thanks for all!

Tags (2)
0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎08-21-2023 08:40 AM

Hi

updating OpenSSH shouldn’t affect your splunk installation. Of course if there are lot of other packages which are a requirement for updating OpenSSH, then the story is different. If all your servers are equal you should start with DS and check what will happen. Then go forward with others. Updating only OpenSSH shouldn’t need a server reboot, just restart sshd.

r. Ismo

0 Karma
Reply
Get Updates on the Splunk Community!

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

For Splunk Cloud customers, understanding and optimizing Splunk Virtual Compute (SVC) usage and resource ...

Automatic Discovery Part 3: Practical Use Cases

If you’ve enabled Automatic Discovery in your install of the Splunk Distribution of the OpenTelemetry ...