Splunk Enterprise Security: Do I need to upgrade my ES search head to 6.4.4?
Hi, Question... in the Splunk Enterprise Security (ES) 4.5.1 Installation and Upgrade Manual it reads: *Splunk Enterprise Security 4.5.x and later requires Splunk platform version 6.4.4 or later, and a...
View ArticleWhen trying to upgrade to 6.4.5 on Ubuntu, why do I receive several error...
Segfaults: Cannot disable an internal index. Tried to upgrade from 6.2.0 to 6.4.5 on Ubuntu 14.04 LTS [build e82289930bdd] 2017-01-06 01:16:07 Received fatal signal 6 (Aborted). Cause: Signal sent by...
View ArticleFollowing the latest Splunkbase certification criteria, how can I ensure that...
Hi, We are working on upgrading application which is already available on Splunkbase. The earlier version of application has different name (i.e Starting with SA-ProductName). However, as per the...
View ArticleIs it possible to upgrade current Splunk Light installation to Enterprise, on...
Hi, We currently have Splunk Light (Windows) 6.5.1 with all data sources and indexes configured. We would like to upgrade this current installation to Enterprise 6.5.1 without having to rebuild. When I...
View ArticleSplunk 6.5.1 and Splunk Enterprise Security 4.5.1: What is upgrade path from...
Hi, I know the order to upgrade Splunk components. But don't totally understand the path to upgrade from Splunk Enterprise 6.4.0 / Splunk Enterprise Security (ES) 4.1.1 to Splunk Enterprise 6.5.1 / ES...
View ArticleWhen will Splunk upgrade iplocation database
Hi Splunk, Which Iplocation database does Splunk use? Is it Maxmind? We find that the iplocation database which we are using is not the latest one. Does splunk team have any plan to upgrade? Or can our...
View ArticleAfter upgrading Search Head Cluster from 6.3.1 to 6.5.1, how do I resolve...
Hello Splunkers. I've upgraded my Search Head Cluster (SHC) [6 members, 1 deploy] from version 6.3.1 to version 6.5.1 . The upgrade of the deploy was OK. However, after upgrading all the SHC members,...
View ArticleIs Splunk DB Connect 2.1 compatible with Splunk Enterprise 6.5?
Hi, I will be upgrading our Splunk Enterprise from 6.4.0 to 6.5.x. We are using Splunk DB Connect 2.1.0. Does anyone know if Splunk DB Connect 2.1.0 is compatible with Enterprise 6.5.x? I'm looking for...
View ArticleSplunk App for Microsoft Exchange: Is upgrading the app from 3.1 really as...
I am preparing the upgrade of the Splunk App for Microsoft Exchange from 3.1.3 to actual 3.4.1 When I read the [upgrade from 3.1][1] documentation, it seems I only have to replace the app on my Search...
View Articleupgrade splunk Indexer cluster from 6.4 to latest version of Splunk 6.5.x
Hi Splunkers, I would need to upgrade my cluster from 6.4 to 6.5.2 latest release. I have components listed below, 1. License Master (already upgraded to 6.5.2 and using no enforcement key) 2. Cluster...
View ArticleWhat is the best upgrade path for Machine Learning Toolkit in a distributed...
Let's say you have a few search heads and ten or so indexers all running Splunk 6.2, and you want to upgrade your environment in the least intrusive way so you can use the Machine Learning Toolkit....
View ArticleIs it possible to directly upgrade to 6.5.2 from 6.2?
HI Team, We are planning a Splunk Enterprise upgrade from v6.2 to v6.5.2 on Linux. While going through documentation, I have few queries: 1. Our current version is 6.2.. Can we directly upgrade to...
View ArticleAny known issues with 6.5.2?
We are about to upgrade production to 6.5.2. So, any known issues with 6.5.2? For one thing, we see some issues with Firefox in stage...
View ArticleWhen upgrading the Splunk deployment, can we upgrade replicated indexers...
I have a questions regarding the upgrade 1. Can we upgrade the replicated indexers first in maintenance mode? 2. Can we upgrade the deployment server independently of the indexers to save time?
View ArticleHow do I upgrade my apps in a distributed environment via the CLI?
Our environment consists of Search Head cluster, Indexer peers, a Deployment Server (DS) that deploys to the Deployer, Cluster Master (CM), and directly to our forwarders. We need to upgrade apps on...
View ArticleSplunk DB Connect 3 migration: Why do I get a "ValueError: zero length field...
Hi, There's been a couple of reports of this error when running the Splunk DB Connect 3 migration script: Traceback (most recent call last): File "./app_migration.py", line 907, in...
View ArticleDBX ver.2.4.0 から ver.3.0.0 へアップグレード後に DB input の実行に失敗する
Splunk app for DB Connect をバージョン 2.4.0 から バージョン 3.0.0 へとアップグレードを行い、アップグレードは成功したように見えました。しかしながら、その後、DB input の実行を確認したところ splunk_app_db_connect_server.log に、下記のエラーメッセージが出力されており DB inputに失敗してしまいます。...
View ArticleWhy am I receiving file integrity problems after upgrading from 6.4.1 to 6.5.2?
Hi fellow Splunkers, I recently upgraded my existing Splunk instances from 6.4.1 to 6.5.2. My setup consists of an indexer and search head cluster and a master/deployer instance. Before upgrading I...
View ArticleAre my sequence of Splunk upgrade steps from 6.4.3 to 6.4.4 accurate?
**Our Environment:** Multi-site Search Head Cluster (X nodes on each site) Standalone Search Head with ES Indexer Cluster (X nodes on each site) Deployment Server Node (2 node, NY is active and ASH is...
View ArticleSplunk DB Connect: How to properly upgrade from 2.1.2 to 3.0.1?
We are currently at v2.1.2 of Splunk DB Connect running on our heavy forwarder in a distributed environment. I want to upgrade to eventually get to version 3.0.1 but the upgrade path says to upgrade to...
View Article