All Apps and Add-ons

How do I disable the Home Monitor app without losing data?

AzJimbo
Path Finder

How do I disable this app without losing data? This app has hijacked my syslog, that was configured to go into a different index. I want my syslog back. Also, it only works with specific FiOS equipment. It should better named to avoid this confusion. Nothing on the main page specified FiOS only.

1 Solution

MuS
SplunkTrust
SplunkTrust

Hi AzJimbo,

either set in the apps local directory, in the app.conf file:

[install]
state = disabled

and restart Splunk or go inside the UI to

http[s]://Yoursplunkserver:[yourport]/manager/search/apps/local

and click on disable on the apps line.

hope this helps ...

cheers, MuS

View solution in original post

MuS
SplunkTrust
SplunkTrust

Hi AzJimbo,

either set in the apps local directory, in the app.conf file:

[install]
state = disabled

and restart Splunk or go inside the UI to

http[s]://Yoursplunkserver:[yourport]/manager/search/apps/local

and click on disable on the apps line.

hope this helps ...

cheers, MuS

AzJimbo
Path Finder

Thanks MuS - The disable in the UI wasn't enabled. I figured it out - I had to go into the data input and repoint the syslog inputs (UDP & TCP) back to the main index. Luckily, my custom field extractions were re-enabled. Once I repointed the data inputs, the 'disable' option in the apps tab was there.

0 Karma
Get Updates on the Splunk Community!

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...

What's new in Splunk Cloud Platform 9.1.2312?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.1.2312! Analysts can ...

What’s New in Splunk Security Essentials 3.8.0?

Splunk Security Essentials (SSE) is an app that can amplify the power of your existing Splunk Cloud Platform, ...