Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Search
Splunk Community
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Search
Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
548 results
Sort by:
04-14-2017
09:22 AM
...mpty .
I have looked at the official documentation for the Splunk Add-on for Unix and Linux. It talks about installing the Add-on on the Universal Forwarder. This did not make sense to me, as i h...
09-10-2023
11:42 PM
We have Splunk Add-on for Unix and Linux 8.2.0 installed and need to upgrade it to the latest version (8.10.0). Request someone to help if I can directly upgrade it to 8.10 or should there be an i...
Labels
- Labels:
-
installation
-
upgrade
07-19-2016
01:44 AM
Hello, Splunkers!
I use splunk_TA_nix and this search does not give results. lastlog.sh permissions 754.
Who.sh does not show any data too.
Splunkd is running by root account on CentOS 7....
07-28-2014
05:46 PM
1 Karma
I've just installed the Splunk App for *Nix. The indexer/forwarder that it is on is Windows based, running splunk 6. I have 1 redhat linux box configured with the add-on and the universal forwarder t...
11-24-2022
12:28 AM
File monitoring inputs for Splunk Add-on for Unix and Linux Query 1-->I have installed the above mentioned app to monitor the file monitoring input from the same. When I enable the default f...
Labels
- Labels:
-
configuration
Show results in replies (6)
-
Hi @AK_Splunk, I suppose that you installed the last version of this Add-On. Anyway, there a...
-
...One additional question:did you installed the Linux Add-On also on Indexers? Add-on are used on For...
-
Hi @gcusello Thanks for you quick response. The permissions are root itself and have r...
-
...efault file monitoring inputs in the app and have added 3 more file paths in same format as the d...
-
Hi @AK_Splunk, configurations are correct, which user are you using to run Splunk on For...
-
Thanks for your input @gcusello Yes the components are installed correctly in SH,IDX and...
10-09-2023
10:04 AM
App: https://splunkbase.splunk.com/app/833 It looks like the nfsiostat.sh script is not compatible with the RHEL9. I'm testing with Rocky9.2 and the nfsiostat command output is already d...
Labels
- Labels:
-
installation
08-13-2012
12:01 PM
1 Karma
Splunk v4.3.2
*NIX 4.5
About the Splunk Technology Add-on (TA) for Unix and Linux
Complete newb with Splunk.
Overview
Running demo of Splunk on Linux CentOS 6.2 - 64-bit
VM Linux g...
Show results in replies (3)
-
...his first, configured it and get data sent out to Splunk, I then added Splunk TA for Unix and Linux, c...
-
...(TA) for Unix and Linux onto the host to collect data from (sender), it will end up here: $SPLUNK...
-
...-on-for-unix-and-linux Configure TA cd $SPLUNK_HOME/etc/apps/ tar xzvf $TMP/Splunk...
07-23-2022
09:24 AM
...ompare it to the \Splunk_TA_nix\lookups dir, there are at least 5 lookups missing. In 8.5 all 10 lookups are present.
https://docs.splunk.com/Documentation/AddOns/released/UnixLinux/L...
Labels
- Labels:
-
installation
-
upgrade
07-11-2022
07:58 AM
...tage, let’s take as an example. Wanting to collect only some logs from hosts using a universal forwarder, using the “Splunk_TA_nix” and setting up a “/local/inputs.conf”, cherry-picking a few sources/f...
Labels
- Labels:
-
configuration
Show results in replies (8)
-
...ime I hint to maintain the same version of the TA in all your Splunk machines (UFs, HFs, SHs, IDXs and D...
-
Hi @fatsug, as I said, you use TA not only for input, but also for parsing, to better u...
-
...A "as is", without modification' and this was what I was planning to do, "take a clean copy of the T...
-
...ix is used for input phase (on Forwarders and on all Splunk servers) but also for parsing and merging p...
-
Hi @gcusello Thank you for the feeback! OK, so even if monitoring only a single f...
-
Hello again @gcusello Thank you for clarifying. I get the point, there’s a lot going on...
-
Hi @fatsug, I disagree your choice for the reasons I explained, but it's your. See next t...
-
...same configuration? UF only make use of the "input.conf" (and some scripts). Though if I place the...
06-08-2018
12:42 PM
1 Karma
Hello,
For planned test environment with ES I'm trying to see what fit better to my scenario.
I can see that Splunk Add-on for Unix and Linux can read the auditd via some script. I found also the...
