About Chiko

Chiko · ‎08-27-2021

@gcusello Thanks a lot. Your answers are very helpful for me

Chiko · ‎08-27-2021

@gcusello Thanks for the detailed answer. But what about custom forwarding? Let's say in my code I'll send logs to Splunk instead of Splunk Forwarder. Is it not recommended? So, in this way my app won't depend on Splunk Forwarder, if user removes it from his computer

Chiko · ‎08-27-2021

Hi @gcusello , Thanks for your answer. What about custom logs forwarding? Is it possible? Does exist some recommended way? Because if our app forwards logs to Splunk, it will be protected from uninstall.

Chiko · ‎08-26-2021

Hi all, We use Splunk and Splunk Forwarder for our project. Splunk is installed on EC2 and Forwarder is part of our installation package. So when clients install our app, it's installed with Splunk Forwarder. So, our question how can we protect Splunk Forwarder from uninstalling by user in this case? For our app, we use uninstall password, a user needs to enter password for removing it. Or, maybe does exist someway to say to a user, this Splunk Forwarder is a part of our app, when he will try to remove it? Or, maybe in our situation we need to use an another way for forwarding logs to Splunk (w/o Splunk Forwarder)?

Posts	4
Solutions	0
Karma Given	3
Karma Received	0
Member Since	‎08-26-2021

Online Status	Offline
Date Last Visited	‎08-27-2021 06:35 AM

Protect Splunk Forwarder from deleting

Re: Protect Splunk Forwarder from deleting

Re: Protect Splunk Forwarder from deleting

Re: Protect Splunk Forwarder from deleting

Protect Splunk Forwarder from deleting