How to add data to Splunk App for Infrastructure

To configure data collection, you must be a user with administrator privileges.

Configure data collection to add data to the Splunk App for Infrastructure (SAI) and start monitoring metrics and logs for your hosts. You can collect data from Linux systems, Windows systems, Mac OS X systems, AWS services, Kubernetes clusters, and OpenShift clusters. Use the easy install script to configure data collection, or configure data collection manually.

For information about how data collection works, see How the data collection script works in Splunk App for Infrastructure.

For information about operating system requirements for data collection, see Operating system support for data collection.

Collect data from Linux systems

To use the easy install script to collect data, see Collect Linux/Unix metrics and logs with Splunk App for Infrastructure.

To manually configure data collection, see:

Collect data from Windows systems

To use the easy install script to collect data, see Collect Windows metrics and logs with Splunk App for Infrastructure.

To manually configure data collection, see Manually configure metrics and log collection for a Windows host for Splunk App for Infrastructure.

Collect data from Mac OS X systems

To use the easy install script to collect data, see Collect Mac OS X metrics and logs with Splunk App for Infrastructure.

To manually configure data collection, see

Collect data from AWS services

You can collect AWS data from one AWS account a time. To set up AWS data collection, you will need your AWS account's Key ID, Secret Key, and Region Category. You can collect these data from these AWS services:

EC2
EBS
ELB
CloudWatch

For more information, see Configure AWS data collection for Splunk App for Infrastructure.

Collect data from Kubernetes clusters

To use the easy install script to collect data, see Collect Kubernetes metrics and logs with Splunk App for Infrastructure.

Collect data from OpenShift clusters

To use the easy install script to collect data, see Collect OpenShift metrics and logs with Splunk App for Infrastructure.

Collect data from Docker containers

You can collect data on Docker containers that were not deployed with an orchestration tool like Docker Swarm, Kubernetes, or OpenShift. Enable Docker monitoring on Linux or Mac OS X hosts that you monitor in SAI.

To enable Docker monitoring when running the easy install script, see one of these topics according to your operating system:

To manually enable Docker monitoring, see Manually configure metrics collection on a *nix host for Splunk App for Infrastructure.

Collect data from VMware vCenter Servers

You can collect data from VMware vCenter Servers, including, virtual machines, ESXi hosts, clusters, and data centers. To collect VMware data, you have to install additional add-ons in your Splunk deployment and deploy a Data Collection Node (DCN) and Data Collection Scheduler (DCS).

To install everything you need for VMware data collection, see Install VMware data collection add-ons and dependencies in the Install and upgrade Splunk App for Infrastructure guide.

To deploy a DCN and DCS, see these topics in the Install and upgrade Splunk App for Infrastructure guide:

After you deploy a DCN and DCS, see these topics to configure data collection:

Related answers from Splunk Community

How to add data to Splunk App for Infrastructure

Collect data from Linux systems

Collect data from Windows systems

Collect data from Mac OS X systems

Collect data from AWS services

Collect data from Kubernetes clusters

Collect data from OpenShift clusters

Collect data from Docker containers

Collect data from VMware vCenter Servers

Comments

How to add data to Splunk App for Infrastructure

Was this topic useful?