Splunk Enterprise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Upgrade from RHEL 7 to RHEL 8 on version 8.0.2

splunkuser109
Explorer
‎03-19-2021 09:37 AM

Is there any documentation on safely upgrading splunk machines (master, searchhead, indexers) on splunk version 8.0.2 from RHEL 7 to RHEL 8 ?

Labels (1)
Labels
0 Karma
Reply

splunkuser109
Explorer
‎03-22-2021 10:12 AM

Thank you! What are some splunk commands I can use to verify that everything is working properly? I have checked the splunk service status on all the machines, the search function in the web UI, and ran the splunk show cluster-bundle-status to check the status of the indexer cluter.

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎03-22-2021 02:01 PM

MC dashboards are a good starting point to check after update. Also do those apply xxx and rolling-restarts. 
You should have some standard metrics which shows the normal situation which you should use to validate current situation. 

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎03-20-2021 05:38 AM

How to upgrade your OS is a better question for the Red Hat community than the Splunk community.  Splunk does not offer guidance on how to upgrade the OS it runs on.

You will, of course, need to stop each Splunk instance so it's OS can be changed.  The order is not significant since you are not changing Splunk versions.  Just be sure to do one instance at a time and to put your indexer cluster (if you have one) into maintenance mode first.

---
If this reply helps you, Karma would be appreciated.
Reply

mdtoro
Explorer
‎01-04-2023 12:48 PM

Splunk isn't dependent on library versions of the OS?  Or, build any static libraries based on the OS?

Tags (1)
0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎01-04-2023 01:20 PM

Splunk is dependent only on the kernel version.

---
If this reply helps you, Karma would be appreciated.
Reply

mdtoro
Explorer
‎01-05-2023 08:46 AM

Any issues with the version of glibc?

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎01-05-2023 09:48 AM

Splunk's system requirements documentation (https://docs.splunk.com/Documentation/Splunk/latest/Installation/Systemrequirements#System_requireme...) mention OS kernels and a few caveats, but nothing about specific libraries.  From that I conclude there are no dependencies on libraries.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

mdtoro
Explorer
‎01-04-2023 02:06 PM

Kernel and Posix threads (libpthread?)

Not sure how much the pthread library version matters.

0 Karma
Reply

splunkuser109
Explorer
‎03-21-2021 04:35 PM

Thanks for the input! How can we put the index cluster into maintenance mode? Do we just run the command from this document on the master node? https://docs.splunk.com/Documentation/Splunk/8.1.2/Indexer/Usemaintenancemode

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎03-22-2021 12:31 AM
Yes those are correct commands to do it.
Reply
Get Updates on the Splunk Community!

How to Monitor Google Kubernetes Engine (GKE)

We’ve looked at how to integrate Kubernetes environments with Splunk Observability Cloud, but what about ...

Index This | How can you make 45 using only 4?

October 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with this ...

Splunk Education Goes to Washington | Splunk GovSummit 2024

If you’re in the Washington, D.C. area, this is your opportunity to take your career and Splunk skills to the ...