Configure Splunk to start at boot time
On Windows, Splunk starts by default at machine startup. To disable this, see "Disable boot-start on Windows" at the end of this topic.
On *nix platforms, you must configure Splunk to start at boot time.
Enable boot-start on *nix platforms
Splunk provides a utility that updates your system boot configuration so that Splunk starts when the system boots up. This utility creates a suitable
init script (or makes a similar configuration change, depending on your OS).
As root, run:
$SPLUNK_HOME/bin/splunk enable boot-start
If you don't start Splunk as root, you can pass in the
-user parameter to specify which user to start Splunk as. For example, if Splunk runs as the user bob, then as root you would run:
$SPLUNK_HOME/bin/splunk enable boot-start -user bob
If you want to stop Splunk from running at system startup time, run:
$SPLUNK_HOME/bin/splunk disable boot-start
More information is available in
$SPLUNK_HOME/etc/init.d/README and if you type
help boot-start from the command line.
Note for Mac users
Splunk automatically creates a script and configuration file in the directory:
/System/Library/StartupItems. This script is run at system start, and automatically stops Splunk at system shutdown.
Note: If you are using a Mac OS, you must have root level permissions (or use sudo). You need administrator access to use sudo.
Enable Splunk to start at system start up on Mac OS using:
just the CLI:
./splunk enable boot-start
the CLI with sudo:
sudo ./splunk enable boot-start
Disable boot-start on Windows
By default, Splunk starts automatically when you start your Windows machine. You can configure the Splunk processes (
splunkweb) to start manually from the Windows Services control panel.
Start and stop Splunk
Install your license
This documentation applies to the following versions of Splunk® Enterprise: