I have configured splunk daemonset for k8s cluster. Agent logs are flowing. However the application logs are not getting indexed, as /var/lib/docker/containers is owned by root and a read only file system.
Also I am not able to change permissions of /var/lib/docker/containers. PS - We are running splunk agent with a non-root user.