Splunk® Content Packs for ITSI and IT Essentials Work

Splunk Content Packs for ITSI and IT Essentials Work

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Install the Content Pack for Unix Dashboards and Reports

Perform the following high-level steps to configure the Content Pack for Unix Dashboards and Reports:

  1. Install and configure the Splunk Add-on For Unix and Linux.
  2. Install the Content Pack for Unix Dashboards and Reports.
  3. Create the necessary indexes.

Step 1: Install and configure the Splunk Add-on for Unix and Linux

Install and use the Splunk Add-on for Unix and Linux to get data in for the Content Pack for Unix Dashboards and Reports. To learn more about how to enable inputs in the Splunk Add-on for Unix and Linux, see Enable data and scripted inputs for the Splunk Add-on for Unix and Linux in the Splunk Add-on for Unix and Linux documentation.

The following table shows the install locations on the distributed environment for the content pack and the add-on.

Component Search head /cluster Indexer / cluster Forwarder
Content Pack for Unix Dashboards and Reports x
Splunk Add-on for Unix and Linux x x x

Step 2: Install the Content Pack for Unix Dashboards and Reports

The Splunk App for Content Packs contains the Content Pack for Unix Dashboards and Reports. The content pack contents are automatically installed and running once you install the Splunk App for Content Packs on the search head where you installed ITSI or IT Essentials Work. Refer to the Splunk App for Content Packs installation instructions to install the Splunk App for Content Packs in your environment.

Step 3: Create the necessary indexes

The Content Pack for Unix Dashboards and Reports requires two indexes on the search head for indexing and showing the details of the fired alerts. Create indexes unix_summary and firedalerts using the following documentation:

Last modified on 21 July, 2021
PREVIOUS
Release Notes for the Content Pack for Unix Dashboards and Reports
  NEXT
Migrate from the Splunk App for Unix and Linux to the Content Pack for Unix and Linux Dashboards and Reports

This documentation applies to the following versions of Splunk® Content Packs for ITSI and IT Essentials Work: current


Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters