Hey community
We are using Universal forwarder as a sidecar in K8S following github introduction.
But the document is not clear enough and cannot guide us to integrate with server.
env:
- name: SPLUNK_START_ARGS
value: --accept-license
- name: SPLUNK_USER
value: root
- name: SPLUNK_GROUP
value: root
- name: SPLUNK_PASSWORD
value: helloworld
- name: SPLUNK_CMD
value: add monitor /var/log/
- name: SPLUNK_STANDALONE_URL
value: splunk.company.internal
Some questions for about configurations:
1. splunk user and password: where can we get this user and password? shall we allocate an account from splunk enterprise server?
2. SPLUNK_STANDALONE_URL: is this splunk enterprise server URL? is it possible to get this URL from splunk server?
... View more