Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Gathering the remote logs and performance counters from remote Windows machines

twieczorkowski
Explorer
‎05-30-2012 09:16 AM

Hi,

I've got many windows servers to monitor.
I would like to gathering the data from a remote server.
In the manual, I read that the account for the SPLUNK services must be a domain user for gathering data from a remote machines.

But, domain user cannot access the logs or performance data from servers.
Is this "splunk" domain user must be a domain admin or must be added to every server as a local adminstrator (administrators group)?

BR,
Tom

Tags (1)
0 Karma
Reply

peter_gianusso
Communicator
‎12-09-2013 02:25 PM

In my experience, the user needs to be a local admin on the box. It is true that the user should be a domain user but it needs more permissions than that on the local box to get the information that you are looking for.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk APM: New Product Features + Community Office Hours Recap!

Howdy Splunk Community! Over the past few months, we’ve had a lot going on in the world of Splunk Application ...

Index This | Forward, I’m heavy; backward, I’m not. What am I?

April 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...

A Guide To Cloud Migration Success

As enterprises’ rapid expansion to the cloud continues, IT leaders are continuously looking for ways to focus ...