matthew/DCO-SOGs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Upload files to "6 SIEMs/Splunk"

Browse Source
This commit is contained in:
Matthew Iverson
2024-10-27 00:07:06 -04:00
parent e762946b82
commit 8e0d4ca472
9 changed files with 1336 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

25
6 SIEMs/Splunk/6.3searchheadcluster.md Normal file
View File

@ -0,0 +1,25 @@
# search head 1
```
splunk init shcluster-config -auth admin:changed -mgmt_uri https://sh1.example.com:8089/ -replication_port 34567 -replication_factor 2 -conf_deploy_fetch_url https://10.160.31.200:8089/ -secret mykey -shcluster_label shcluster1
```
# search head 2
```
splunk init shcluster-config -auth admin:changed -mgmt_uri https://sh1.example.com:8089/ -replication_port 34567 -replication_factor 2 -conf_deploy_fetch_url https://10.160.31.200:8089/ -secret mykey -shcluster_label shcluster1
```
# search head 3
```
splunk init shcluster-config -auth admin:changed -mgmt_uri https://sh1.example.com:8089/ -replication_port 34567 -replication_factor 2 -conf_deploy_fetch_url https://10.160.31.200:8089/ -secret mykey -shcluster_label shcluster1
```
# search head 1 captain
```
splunk bootstrap shcluster-captain -servers_list "https://sh1.example.com:8089,https://sh2.example.com:8089,https://sh3.example.com:8089,https://sh4.example.com:8089" -auth admin:changed
```
# captain status