Attempting to configure DBX in a distributed configuration following the guidance at: http://docs.splunk.com/Documentation/DBX/1.1.4/DeployDBX/Setupsearchheadpooling Attempting to execute the dbx_shpinst.py script against any DB entry yields the same error: /apps/splunk/bin/splunk cmd python /${shared-volume}/etc/apps/dbx/bin/dbx_shpinst.py search-head:8089 --user admin --db my_db_name splunk password: database password: No handlers could be found for logger "splunk.rest" Could not validate password Splunk is 6.0.1. DBX is V1.1.4. Any guidance on resolving this error? ... View more

Are cluster configuration and search head pooling compatible? In other words, can one configure a master node that references a search head pool? The "Managing Indexes and Clusters" document implies it is possible: If you want to use some of the more advanced features of distributed search, such as search head pooling or mounted bundles, you must edit distsearch.conf on the search head. For detailed information on search heads, including instructions on how to do advanced configuration, read the Distributed Search manual. That chapter focuses on non-clustered environments, but it also provides correct information for configuring advanced features on clustered search heads. However, the Distributed Search document makes no reference to that configuration. Does this imply that the master node configuration will reference the search heads in the pool individually, and that the search heads participation in the "pool" is governed by their individual configuration? ... View more