Skip to content
/ git-config-tracker Public

Splunk app to monitor the /etc directory of Splunk for all changes of .conf files

12 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

xpac1985/git-config-tracker

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
bin
bin
 
 
default
default
 
 
local
local
 
 
metadata
metadata
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

git-config-tracker

Splunk app to monitor the /etc directory of Splunk for all changes of .conf files Any changes are automatically added and commited to git Splunk dashboard to view recent changes and which files and how many lines have been changed

Requirements

  • git has to be installed on each server that should be monitored
    • works with git 1.8.3.1, doesn't work on git 1.7.1. -> use an up-to-date git

Installation

This app needs to be put on:

  • Each search head (for field extraction and the dashboard)
  • Any server that should be monitored for file changes

On all servers that should be monitored, install the app, then:

  • open a shell, go to $SPLUNK_HOME/etc, do git init
  • copy the local/inputs.conf.example to local/inputs.conf
  • restart Splunk

At the moment, there is no setup process to automate the git init

Changelog

1.0

Initial release

About

Splunk app to monitor the /etc directory of Splunk for all changes of .conf files

Resources

Readme
Activity

Stars

12 stars

Watchers

6 watching

Forks

1 fork
Report repository

Releases 3

documentation update Latest
Jan 26, 2018
+ 2 releases

Packages

No packages published

Languages