All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Warning - DB Connect is running in SHCluster! Some functions will be disabled under this environment.

saranya_fmr
Communicator
‎04-11-2017 05:57 AM
  1. List item

Can this warning be ignored coz I always get this in the SH Cluster. We do not have scheduled inputs and scheduled outputs and thus we did not install the DB Connect app on the Heavy forwarders. We have it only the SH cluster.

But everytime I open the app , I see this warning. So can This be ignored or is there a way to get rid of this? Is it mandatory to install the app on the Heavy Forwarders?

  1. Also , we will use dbxlookup feature, so does this need the app to be installed on the HF?

alt text

Tags (1)
Preview file
1 KB
Reply
1 Solution
Solved! Jump to solution
Solution

sloshburch
Splunk Employee
Splunk Employee
‎04-11-2017 10:27 AM

As far as it is documented, there is no way to hide the message: http://docs.splunk.com/Documentation/DBX/latest/DeployDBX/WhatsnewinSplunkDBConnect#Scheduled_tasks_...

Perhaps an alternative approach is to disable the visibility of the app for non-admins. That way the commands you want to use are available globally but the app itself is invisible other than for admins who know to ignore the message.
Make the app invisible: http://docs.splunk.com/Documentation/Splunk/latest/Admin/Managingappconfigurationsandproperties
Make sure the command have global permissions: http://docs.splunk.com/Documentation/Splunk/latest/Knowledge/Manageknowledgeobjectpermissions#Make_a...

View solution in original post

Reply
Solved! Jump to solution
Solution

sloshburch
Splunk Employee
Splunk Employee
‎04-11-2017 10:27 AM

As far as it is documented, there is no way to hide the message: http://docs.splunk.com/Documentation/DBX/latest/DeployDBX/WhatsnewinSplunkDBConnect#Scheduled_tasks_...

Perhaps an alternative approach is to disable the visibility of the app for non-admins. That way the commands you want to use are available globally but the app itself is invisible other than for admins who know to ignore the message.
Make the app invisible: http://docs.splunk.com/Documentation/Splunk/latest/Admin/Managingappconfigurationsandproperties
Make sure the command have global permissions: http://docs.splunk.com/Documentation/Splunk/latest/Knowledge/Manageknowledgeobjectpermissions#Make_a...

Reply
Solved! Jump to solution

saranya_fmr
Communicator
‎04-12-2017 03:57 AM

Thankyou Burch 🙂

0 Karma
Reply
Solved! Jump to solution

sloshburch
Splunk Employee
Splunk Employee
‎04-12-2017 05:22 AM

NP! If you found that satisfactory, then please mark it as an accepted answer so others who stumble on this question will see there is a potential solution. If not, then leave it as is of course.

0 Karma
Reply
Solved! Jump to solution

nawazns5038
Builder
‎08-16-2018 12:05 PM

I guess if we keep an app as invisible, it goes invisible to every role including admin as well.

0 Karma
Reply
Solved! Jump to solution

sloshburch
Splunk Employee
Splunk Employee
‎08-20-2018 08:56 AM

Hmmm. I think it depends on if you removed the read permission for that role...

0 Karma
Reply
Get Updates on the Splunk Community!

Enhance Security Visibility with Splunk Enterprise Security 7.1 through Threat ...

(view in My Videos)Struggling with alert fatigue, lack of context, and prioritization around security ...

Troubleshooting the OpenTelemetry Collector

  In this tech talk, you’ll learn how to troubleshoot the OpenTelemetry collector - from checking the ...

Adoption of Infrastructure Monitoring at Splunk

  Splunk's Growth Engineering team showcases one of their first Splunk product adoption-Splunk Infrastructure ...