Videos

  • Add Videos
  • View All

Latest Activity

Profile Icon
Jacob Thomas is now a member of splunkninja 11 hours ago
Welcome Them!
Profile Icon
Greg Vallenari is now a member of splunkninja Sunday
Welcome Them!
Profile Icon
Mike Hartford commented on Michael Wilde's video
Got it thanks
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 8
Profile Icon
Michael Wilde commented on Michael Wilde's video
Sure...  When you do group mapping, map them to groups that don't have the domain admins in them.  I have a separate OU=Groups that has "Splunk Users, Splunk Admins, Splunk Power Users" as group names, and specific users…
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 8
Profile Icon
Mike Hartford commented on Michael Wilde's video
I want to give LDAP access to my splunk servcie but I don't want the LDAP users to have admin capabilitys in Splunk.  Can I keep the domain admins out of Splunk if I have LDAP authentication???
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 7
Profile Icon
Mike Hartford left a comment for Jonathan Hawes
Helow Jonathan,   Glad to have another Splunker.  I've been useing Splunk for 2 years and am hooked.  I leared how to spell splunk and | transaction too.  you'll learn that one soon.   Go over to Splunk…
Feb 7
Profile Icon
Mike Hartford commented on Mike Hartford's blog post 'tees for the holy day'
  Holy Batskins Ninja, zzzzzwap zgruppp kapow a hidden stash, how great is that!!!!   The team that found them must have special bat senses and highly tooned Splunking skills   I like to wear Extra Lovable…
Feb 7
Profile Icon
Learning, learning, learning . . . Our Splunk "expert" is gone, and the non-programmer gets to learn the task! How do you spell SPLUNK?
Status posted by Jonathan Hawes Feb 7
0 Comments
Ziad

SplunkLightForwarder + script inputs

Hello, is it possible to configure splunklightforwarder to forward cpu utilisation? I've added the lines from the unix app to the splunklightfowarder and nothing's happening.


Is there anything else that should be done to monitor local resources like cpu, mem, network... through splunklightforwarder?


Thanks.

Views: 18

Reply to This

Replies to This Discussion

Michael WildePermalink Reply by Michael Wilde on January 27, 2010 at 1:55pm
Put the UNIX app on both the indexer and the forwarder and it should work. Question, is there an "index=os" on your Indexer.. run that search and tell me if there are any events there.
ZiadPermalink Reply by Ziad on January 27, 2010 at 5:31pm
I only enabled the app and it worked! the script checks had the index=os in the beginning. Tried it with both on or off and they didn't work. Right now i'm on a light forwarder with unix enabled. I can get everything on the master splunk server with no probs.

Thanks alot!
Michael WildePermalink Reply by Michael Wilde on January 27, 2010 at 7:59pm
Splunk (we) -- disclosure -- I work there -- We need to make that app stuff better and more understandable. "where everything's supposed to go", "more app setups, so you can configure them more". Better management of deployment of apps.

Glad you're good to go!.

Now.. ask me some hard questions ;)

RSS

© 2012   Created by Michael Wilde.

Badges  |  Report an Issue  |  Terms of Service