Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [dhorn@DESKTOP ~]$ ssh splunk-idx2
- root@splunk-idx2's password:
- Last login: Thu May 29 10:28:51 2014
- [root@SPLUNK-IDX2 ~]# useradd splunker
- [root@SPLUNK-IDX2 ~]# passwd splunker
- Changing password for user splunker.
- New password:
- Retype new password:
- passwd: all authentication tokens updated successfully.
- [root@SPLUNK-IDX2 ~]# visudo
- [root@SPLUNK-IDX2 ~]# exit
- [dhorn@DESKTOP ~]$ ssh splunker@splunk-idx2
- [splunker@SPLUNK-IDX2 ~]$ sudo mkdir /apps
- [splunker@SPLUNK-IDX2 ~]$ mkdir ~/splunkinstaller && cd ~/splunkinstaller
- [splunker@SPLUNK-IDX2 splunkinstaller]$ wget -O splunk-6.1.1-207789-linux-2.6-x86_64.rpm 'http://www.splunk.com/page/download_track?file=6.1.1/splunk/linux/splunk-6.1.1-207789-linux-2.6-x86_64.rpm&ac=&wget=true&name=wget&platform=Linux&architecture=x86_64&version=6.1.1&product=splunk&typed=release'
- --2014-06-06 15:14:45-- http://www.splunk.com/page/download_track?file=6.1.1/splunk/linux/splunk-6.1.1-207789-linux-2.6-x86_64.rpm&ac=&wget=true&name=wget&platform=Linux&architecture=x86_64&version=6.1.1&product=splunk&typed=release
- Resolving www.splunk.com... 204.107.141.40
- Connecting to www.splunk.com|204.107.141.40|:80... connected.
- HTTP request sent, awaiting response... 302 Found
- Location: http://download.splunk.com/products/splunk/releases/6.1.1/splunk/linux/splunk-6.1.1-207789-linux-2.6-x86_64.rpm [following]
- --2014-06-06 15:14:49-- http://download.splunk.com/products/splunk/releases/6.1.1/splunk/linux/splunk-6.1.1-207789-linux-2.6-x86_64.rpm
- Resolving download.splunk.com... 204.107.141.44
- Connecting to download.splunk.com|204.107.141.44|:80... connected.
- HTTP request sent, awaiting response... 200 OK
- Length: 80796793 (77M) [application/x-rpm]
- Saving to: “splunk-6.1.1-207789-linux-2.6-x86_64.rpm”
- 100%[======================================>] 80,796,793 651K/s in 2m 3s
- 2014-06-06 15:16:53 (640 KB/s) - “splunk-6.1.1-207789-linux-2.6-x86_64.rpm” saved [80796793/80796793]
- [splunker@SPLUNK-IDX2 splunkinstaller]$ sudo rpm -i --prefix=/apps splunk-6.1.1-207789-linux-2.6-x86_64.rpm
- complete
- [splunker@SPLUNK-IDX2 splunkinstaller]$ sudo /apps/splunk/bin/splunk enable boot-start -user splunk --accept-license
- This appears to be your first time running this version of Splunk.
- Could not open log file "/apps/splunk/var/log/splunk/first_install.log" for writing (13).
- First-time-run has not finished. Ignore this error when previewing migration - exiting.
- [splunker@SPLUNK-IDX2 splunkinstaller]$ sudo chown -R splunk:splunk /apps/splunk
- [splunker@SPLUNK-IDX2 splunkinstaller]$ sudo /apps/splunk/bin/splunk enable boot-start -user splunk --accept-license
- This appears to be your first time running this version of Splunk.
- Copying '/apps/splunk/etc/openldap/ldap.conf.default' to '/apps/splunk/etc/openldap/ldap.conf'.
- Generating RSA private key, 1024 bit long modulus
- .................++++++
- ...................................................++++++
- e is 65537 (0x10001)
- writing RSA key
- Generating RSA private key, 1024 bit long modulus
- ..++++++
- ........++++++
- e is 65537 (0x10001)
- writing RSA key
- Moving '/apps/splunk/share/splunk/search_mrsparkle/modules.new' to '/apps/splunk/share/splunk/search_mrsparkle/modules'.
- Init script installed at /etc/init.d/splunk.
- Init script is configured to run at boot.
- [splunker@SPLUNK-IDX2 splunkinstaller]$ sudo shutdown -r now
- [...]
- [dhorn@DESKTOP ~]$ ssh splunker@splunk-idx2
- splunker@splunk-idx2's password:
- Last login: Fri Jun 6 15:13:25 2014 from 172.16.1.172
- [splunker@SPLUNK-IDX2 ~]$ sudo /etc/init.d/splunk status
- [sudo] password for splunker:
- Splunk status:
- splunkd is not running.
- splunkweb is not running.
- [splunker@SPLUNK-IDX2 ~]$ sudo /etc/init.d/splunk start
- Starting Splunk...
- Splunk> Now with more code!
- Checking prerequisites...
- Checking http port [8000]: open
- Checking mgmt port [8089]: open
- Checking configuration... Done.
- Checking critical directories... Done
- Checking indexes...
- Validated: _audit _blocksignature _internal _introspection _thefishbucket history main summary
- Done
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- ERROR - Error opening "/apps/splunk/var/log/splunk/splunkd-utility.log": Permission denied
- The SPLUNK_DB environment variable was defined but the test file ("/apps/splunk/var/lib/splunk/test.emcX2Z") could not be created by the current user: Permission denied
- Locking test failed on filesystem in path /apps/splunk/var/lib/splunk with code '7'. Please file a case online at http://www.splunk.com/page/submit_issue
- Checking filesystem compatibility...
- [splunker@SPLUNK-IDX2 ~]$ sudo chown -R splunk:splunk /apps/splunk
- [splunker@SPLUNK-IDX2 ~]$ sudo /etc/init.d/splunk start
- Starting Splunk...
- Splunk> Now with more code!
- Checking prerequisites...
- Checking http port [8000]: open
- Checking mgmt port [8089]: open
- Checking configuration... Done.
- Checking critical directories... Done
- Checking indexes...
- Validated: _audit _blocksignature _internal _introspection _thefishbucket history main summary
- Done
- Checking filesystem compatibility... Done
- Checking conf files for problems...
- Done
- All preliminary checks passed.
- Starting splunk server daemon (splunkd)...
- Done
- [ OK ]
- Starting splunkweb... Generating certs for splunkweb server
- Generating a 1024 bit RSA private key
- .......................++++++
- ...............++++++
- unable to write 'random state'
- writing new private key to 'privKeySecure.pem'
- -----
- Signature ok
- subject=/CN=SPLUNK-IDX2/O=SplunkUser
- Getting CA Private Key
- unable to write 'random state'
- writing RSA key
- [ OK ]
- Done
- If you get stuck, we're here to help.
- Look for answers here: http://docs.splunk.com
- The Splunk web interface is at http://SPLUNK-IDX2:8000
- [splunker@SPLUNK-IDX2 ~]$
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement