Splunk® App for Infrastructure (Legacy)

Administer Splunk App for Infrastructure

Collect *nix data in SAI with the Splunk Add-on for Unix and Linux

You can collect *nix data in SAI with the Splunk Add-On for Unix and Linux. Entities created through the Splunk Add-on for Unix and Linux integration have the entity type TA_Nix.

Steps

Follow these high-level steps to add *nix data to SAI through the Splunk Add-on for Unix and Linux:

Install and configure the Splunk universal forwarder

Install and configure the Splunk universal forwarder, if you haven't done so already. For more information, see About the universal forwarder in the Forwarder Manual.

Install and configure the Splunk Add-on for Unix and Linux

Follow these steps to install and configure the Splunk Add-on for Unix and Linux:

  1. Review the Splunk Add-on for Unix and Linux requirements. For more information, see Hardware and software requirements for the Splunk Add-on for Unix and Linux in the Splunk Add-on for Unix and Linux Manual.
  2. Install the Splunk Add-on for Unix and Linux. For more information, see Install the Splunk Add-on for Unix and Linux in the Splunk Add-on for Unix and Linux Manual.
  3. Configure the Splunk Add-on for Unix and Linux. Enable the metrics inputs in the Splunk Add-on for Unix and Linux and set index to em_metrics. For more information, see Enable data and scripted inputs for the Splunk Add-on for Unix and Linux. If you want to use any other metrics index instead of em_metrics index, see Use custom metric indexes in Splunk App for Infrastructure

Verify your Unix and Linux integration and view entities in the entity overview

Follow these steps to check that your entities appear in SAI, and view entities in the entity overview.

  1. From the SAI main menu, go to Invesitgate > Entities.
  2. Click on an entity name to see the overview.

Troubleshooting

To troubleshoot the Unix and Linux add-on integration with SAI, see Troubleshoot the Unix and Linux entity integration in ITSI in the ITSI Entity Integrations manual. Even though the troubleshooting steps are in the ITSI documentation, they still apply to SAI.

To troubleshoot the Splunk Add-on for Unix and Linux, see Troubleshoot the Splunk Add-on for Unix and Linux in the Splunk Add-on for Unix and Linux manual.

Last modified on 22 October, 2020
About Unix and Linux integrations in SAI   Collect *nix metrics and logs with the easy install script

This documentation applies to the following versions of Splunk® App for Infrastructure (Legacy): 2.2.0 Cloud only, 2.2.1, 2.2.3 Cloud only, 2.2.4, 2.2.5


Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters