Splunk® Add-on for Unix and Linux

Deploy and Use the Splunk Add-on for Unix and Linux

Download manual as PDF

Download topic as PDF

Install the Splunk Add-on for Unix and Linux

You can install the Splunk Add-on for Unix and Linux with Splunk Web or from the command line. You can install the add-on onto any type of Splunk Enterprise or Splunk Cloud instance (indexer, search head, or forwarder).

Install the Splunk Add-on for Unix and Linux from within Splunk Web

  1. Log into Splunk on the system on which you want to install the Splunk Add-on for Unix and Linux.
  2. In the "Home" screen, click Find More Apps in the lower left-hand corner of the screen.
  3. In the "Browse more apps" screen, locate the Splunk Add-on for Unix and Linux in the list, or type in "Splunk Add-on for Unix and Linux" in the search box at the upper right hand corner of the screen.
  4. In the "Splunk Add-on for Unix and Linux" entry in the list, click the Install Free button.
  5. Restart Splunk to complete the add-on installation.

Install the Splunk Add-on for Unix and Linux in Splunk Web from a downloaded file

You can download the Splunk Add-on for Unix and Linux package and install it with Splunk Web. This process works on full instances of Splunk Enterprise. It does not work on universal forwarders.

The file downloads with a .tar.gz extension. Do not attempt to run this file.

  1. Download the Splunk Add-on for Unix and Linux from Splunkbase.
  2. Unpack the archive into an accessible location.
  3. Log into Splunk Enterprise on the host which you want to install the Splunk Add-on for Unix and Linux.
  4. In the Home screen, click Manage Apps.
  5. Click Install App from file.
  6. Click the Choose file button to locate the installation package you just downloaded.
  7. Click Upload. Splunk installs the Splunk Add-on for Unix and Linux.
  8. Restart Splunk to complete the add-on installation.

Install the Splunk Add-on for Unix and Linux from the command line

  1. Download the Splunk Add-on for Unix and Linux from Splunkbase.
  2. Unpack the archive into an accessible location.
  3. Copy the Splunk_TA_nix directory to $SPLUNK_HOME/etc/apps.
  4. Restart Splunk to complete the add-on installation.
PREVIOUS
What a Splunk App for Unix and Linux deployment looks like
  NEXT
Deploy the Splunk Add-on for Unix and Linux in a distributed Splunk environment

This documentation applies to the following versions of Splunk® Add-on for Unix and Linux: 5.1.0, 5.1.1, 5.1.2, 5.2.0, 5.2.1, 5.2.2, 5.2.3, 5.2.4


Was this documentation topic helpful?

Enter your email address, and someone from the documentation team will respond to you:

Please provide your comments here. Ask a question or make a suggestion.

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters