Join the Conversation
- Find Answers
- :
- Using Splunk
- :
- Splunk Search
- :
- Debugging custom search commands
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I've been tinkering with a custom search command that uses win32com.client.
When I try to invoke my search command I get the following error
(-2147352567, 'Exception occurred.', (0, None, None, None, 0, -2147200925), None)
I've tried to call the offending section using the bundled interpreter, and it works just fine.
./splunk cmd python
Any ideas I'm kinda stumped.
I really don't want to have my search command, exec an external interpreter.
== Update ==
I've implemented another version that execs a vbs script to invoke the win32 com component.
It also fails which leads me to believe that splunkd is doing something funny.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Running splunk under a normal user account solves the problem.
On Windows splunk cmd python doesn't run in the same context as the service.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Running splunk under a normal user account solves the problem.
On Windows splunk cmd python doesn't run in the same context as the service.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I would follow http://splunk-base.splunk.com/answers/31262/sysstderr-not-logging-to-splunkd
I have been having issues with trying to find errors with custom commands and the link above has an answer which explains how to add logging information to your script so you can try to track where it is producing errors or how far it is going.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
I am able to trap the error. The issue is what the splunkd process does to the environment that causes the python interpreter to behave differently.
Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!
Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.
[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions
Splunk Community Badges!
[Puzzles] Solve, Learn, Repeat: Matching cron expressions
