This is the official source code repository for configuring Splunk Enterprise and Universal Forwarder instances. It is currently being used by Splunk Official Docker Image. It can be used to configure Splunk Enterprise on any linux platform. See the documentation for more details, including licensing and how to contribute.
Splunk Enterprise is the platform for operational intelligence. The software lets you collect, analyze, and act upon the untapped value of big data that your technology infrastructure, security systems, and business applications generate. It gives you insights to drive operational performance and business results.
This code is the ansible code used for configuring Splunk Enterprise and Splunk Universal Forwarder instances based on a declared configuration. The declared configuration.
This repo should be used by people interested in configuring Splunk according to recommended best practices. These are approved methods for configuring Splunk and are vetted through an internal process.
If you have questions or need support, you can:
- Post a question to Splunk Answers
- Join the #docker room in the Splunk Slack channel
- If you are a Splunk Enterprise customer with a valid support entitlement contract, and have a Splunk related question you can also open a support case on the https://www.splunk.com/ support portal.
- For details on the supported architectures, please refer to the documentation http://docs.splunk.com/Documentation/Splunk/latest/Installation/Systemrequirements#Containerized_computing_platforms
Please also see TROUBLESHOOTING
See Splunk Ansible Documentation
See LICENSING
See CONTRIBUTING
See CHANGELOG
Splunk Inc. and the Splunk Community