About piebob

piebob · ‎05-07-2014

As of Splunk 6.1, Windows Server 2012r2 is supported. http://docs.splunk.com/Documentation/Splunk/latest/Installation/Systemrequirements#Windows_operating_systems

piebob · ‎05-07-2014

i was actually totally wrong, we failed to update the docs for 6.1. go right ahead and run it on 2012r2! the docs have now been updated.

piebob · ‎05-06-2014

please continue to refer to http://docs.splunk.com/Documentation/Splunk/latest/Installation/Systemrequirements#Windows_operating_systems to determine if the version you're interested is supported yet. as of 6.1, this has not changed.

piebob · ‎05-06-2014

Splunk Support/Sustaining Engineering is looking into this issue. if you are experiencing this issue, please do as Brian suggests above and file a support case. thank you!

piebob · ‎05-01-2014

yes, iplocation is available in all versions of Splunk. as noted above, it requires that your Splunk instance have access to the internet, as it uses the http://hostip.info service to provide the location information. i've edited the relevant topic to clarify this.

piebob · ‎05-01-2014

can you be more clear? does it not work in your installation? what happens when you try to use it?

piebob · ‎05-01-2014

please remember to accept the answer when it answers your question.

piebob · ‎04-30-2014

hi hartfomi, if the system doesn't recognize your phone number, it is supposed to offer you an option to enter the phone number associated with your entitlement. is this not happening? either way, if you are not recognized by the system, you should be abe to leave a message. please provide your contact and account information, and someone will absolutely call you back.

piebob · ‎04-27-2014

hey softek, i believe our customer support org should have contacted you by now, please let me know if that isn't the case.

piebob · ‎04-14-2014

sorry, that was me--i deleted Yann's answer because it wasn't really about your original question (email subscription). i'm getting someone from prodsec to answer that. my apologies! (ps i asked Yann first :))

piebob · ‎04-11-2014

aengelstadt is correct, you just upgrade in place, as though you were reinstalling. just make sure you are using the same OS and architecture package as before.

piebob · ‎04-10-2014

splunk.com is not vulnerable. Splunk Answers is hosted by a 3rd party vendor. currently checking with them on this.

piebob · ‎04-09-2014

could you be a little more specific about what you're asking? what are you trying to do?

piebob · ‎04-09-2014

this is correct. see my answer for more info.

piebob · ‎04-09-2014

this is correct. we are working currently to test our fix, and will post it as soon as it meets our quality requirements.

piebob · ‎04-09-2014

Splunk version 6.0 and later are vulnerable. no other versions are vulnerable. We have a fix checked in and are currently in the process of testing our patch. We will be posting bits as soon as possible, and there will be information available at our security portal, http://www.splunk.com/page/securityportal Note: Unless you have a public-facing, externally-accessible Splunk instance, you likely have very little exposure due to this vulnerability. That said, we are working very hard to deliver the patch as soon as possible, and to ensure that the patch we publish is of high quality.

piebob · ‎04-07-2014

have you restarted the Splunk instance since you uninstalled the app?

piebob · ‎03-31-2014

sorry for the confusion; the documentation for the app was accidentally left in an unreleased state. if you try that link again, it should work for you: http://docs.splunk.com/Documentation/MSApp/1.0/MSInfra/AbouttheSplunkAppforMSInfrastructure

piebob · ‎03-18-2014

i would say no, since it is not yet a supported platform, the fact that it doesn't work yet isn't a bug. unless you're talking about a different, supported version of Windows.

piebob · ‎03-18-2014

as Ellen mentioned, Splunk is currently in the process of certifying Windows Server 2012R2 and originally expected to complete the process early this year. however, we encountered a Microsoft bug that prevents us from certifying against the OS. we are working with Microsoft to resolve the issue and hope to be able to certify the platform later this year. i'm really sorry for the delay, but in the meantime, we advise you to use 2008R2 or straight up 2012.

piebob · ‎03-13-2014

bvenom28, i recommend you check out the search and reporting class offered by the Splunk EDU team, it's a good way to get started!

piebob · ‎03-12-2014

this is an extremely high-level and general question. there are a lot of things you need to think about first, including: what do you want to accomplish with Splunk? what sort of data will you be indexing? what do you want to learn from it? how many users will you have? what is your budget? if you're planning to deploy Splunk at your enterprise, you should work with your sales team (which will include a Sales Engineer) to help you plan your deployment. a good place to get information is the Splunk documentation. i recommend starting with the tutorial to get a high-level idea of what's possible with Splunk: http://docs.splunk.com/Documentation/Splunk/latest/SearchTutorial/WelcometotheSearchTutorial here is information about creating dashboards and views (which is part of developing apps) for Splunk: http://docs.splunk.com/Documentation/Splunk/latest/Viz/Aboutthismanual here is some information about common deployment architectures for Splunk: http://docs.splunk.com/Documentation/Splunk/latest/Deploy/Architectureoverview the rest of the Distributed Deployment Manual will also provide good info about what's possible.

piebob · ‎03-11-2014

i've contacted the Support team, you should receive an email from them shortly.

piebob · ‎03-11-2014

can you provide details about how they won't connect?

piebob · ‎02-21-2014

and then change the password! 🙂

Posts	473
Solutions	73
Karma Given	3236
Karma Received	755
Member Since	‎12-10-2009

Online Status	Offline
Date Last Visited	‎06-05-2020 02:02 AM

What is the CLI on Windows? CMD? Powershell?

How do I improve loading time of my dashboard with...

why do i get an Error in 'SearchParser' when i try...

How do I upgrade apps after upgrading to Splunk 4....

how do i search for the ? character?

is it possible to change the name of the PDF repor...

Is there a way to clean event data from a specific...

do you have to restart Splunk when you've added a ...

PdhCollectQueryData failed ?

stopping all listening ports?

Re: Splunk on Windows Server 2012 R2

Re: Splunk on Windows Server 2012 R2

Re: Splunk on Windows Server 2012 R2

Re: Various Manager pages fail to render, shows er...

Re: iplocation is available in version 5?

Re: iplocation is available in version 5?

Re: What are the unnecessary apps that ship by def...

Re: New Phone Support Not recognizing my Phone Nu...

Re: How to contact a LIVE person at Splunk?

Re: How can I receive Splunk security announcement...

Re: upgrade minor version (6.0 to 6.0.3)

Re: Is splunk.com and answers.splunk.com vulnerabl...

Re: Does the forwarder installation path affects i...

Re: Heartbleed/openssl and Splunk

Re: OpenSSL security bug

Re: Heartbleed/openssl and Splunk

Re: how to remove Splunk DB Connect app

Re: Splunk App for Windows Infrastructure document...

Re: Splunk on Windows Server 2012 R2

Re: Splunk on Windows Server 2012 R2

Re: How to perfom math calculations

Re: How to design Splunk System?

Re: How do I submit a ticket to support?

Re: 5.0.7 forwarder won't connect to 5.0.1 indexer...

Re: logging in for the first time

Join the Conversation