Installing Palo Alto App

jmilles · ‎12-03-2012

I am attempting to install the Palo Alto App on Splunk, but every time I extract the files into the App folder, Splunk will refuse to restart. Is there something I'm missing?

sgtserge · ‎12-17-2012

You have to copy the full extracted directory-tree under etc/apps

e.g c:\windows\program files\splunk\etc\apps\SplunkforPaloAltoNetworks\SplunkforPaloAltoNetworks...

jchiodo · ‎12-05-2012

I forgot to mention that this is running on Windows Server 2008 R2. I get the following error when attempting to restart Splunk:

Log Name: Application
Source: Splunkweb
Date: 12/5/2012 11:52:28 AM
Event ID: 3
Task Category: None
Level: Error
Keywords: Classic
User: N/A
Computer: ISO-SYSLOG
Description:
The instance's SvcRun() method failed
File "C:\Program Files\Splunk\Python-2.7\Lib\site-packages\win32\win32serviceutil.py", line 785, in SvcRun
self.SvcDoRun()
File "C:\Program Files\Splunk\bin\SplunkWebService.py", line 39, in SvcDoRun
from splunk.appserver.mrsparkle import root
File "C:\Program Files\Splunk\Python-2.7\Lib\site-packages\splunk\appserver\mrsparkle\root.py", line 556, in
sys.exit(1)
: 1
Event Xml:

3
2
0
0x80000000000000

880
Application
ISO-SYSLOG

File "C:\Program Files\Splunk\Python-2.7\Lib\site-packages\win32\win32serviceutil.py", line 785, in SvcRun
self.SvcDoRun()
File "C:\Program Files\Splunk\bin\SplunkWebService.py", line 39, in SvcDoRun
from splunk.appserver.mrsparkle import root
File "C:\Program Files\Splunk\Python-2.7\Lib\site-packages\splunk\appserver\mrsparkle\root.py", line 556, in <module>
sys.exit(1)
<type 'exceptions.SystemExit'>
1

Installing Palo Alto App

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms