Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Storing knowledge objects (and in a non-LDAP environment user credentials) remotely

jamesaarondevli
Path Finder
‎11-09-2011 05:05 PM

Hi guys,

does anyone have any experience or opinions around the storage of the below items using a fibre channel SAN and mounting them remotely so Splunk can access them as it otherwise normally would?

  1. User credentials (in a non LDAP environment)
  2. User knowledge objects ($SPLUNK_HOME/etc/users)
  3. Apps and the configuration items therein ($SPLUNK_HOME/etc/apps)

Cheers.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

Damien_Dallimor
Ultra Champion
‎11-09-2011 06:14 PM

When you use the terms "mounting" and "remotely" are you actually meaning sharing your knowledge objects via a NAS mount(ie: using NFS). If so , then THIS LINK has some good info on such an architectural pattern for search head pooling.

As far as presenting SAN(block level) based storage over fibre channel to the OS, so it appears as local disk (vs explicit remote mounting)...then installation and treatment of the etc/apps & etc/users directories is no different than to using a local physical disk. Only thing I can think of really is that if using virtualisation, you may want to consider RDM for direct LUN access vs VMFS.

View solution in original post

Reply
Solved! Jump to solution
Solution

Damien_Dallimor
Ultra Champion
‎11-09-2011 06:14 PM

When you use the terms "mounting" and "remotely" are you actually meaning sharing your knowledge objects via a NAS mount(ie: using NFS). If so , then THIS LINK has some good info on such an architectural pattern for search head pooling.

As far as presenting SAN(block level) based storage over fibre channel to the OS, so it appears as local disk (vs explicit remote mounting)...then installation and treatment of the etc/apps & etc/users directories is no different than to using a local physical disk. Only thing I can think of really is that if using virtualisation, you may want to consider RDM for direct LUN access vs VMFS.

Reply
Solved! Jump to solution

Damien_Dallimor
Ultra Champion
‎11-13-2011 08:12 PM

My pleasure

0 Karma
Reply
Solved! Jump to solution

jamesaarondevli
Path Finder
‎11-13-2011 04:11 PM

thanks damien, you're a beast

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...