Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to disable Splunk app using deployment server?

tbavarva
Path Finder
‎06-20-2019 10:15 AM

Hi all,

I have deployed an app using a deployment server in Splunk.

Suppose I got a new update for that app and I need to upgrade it.

I have below search:

  1. Since I am using deployment server to push the update on deployment clients, how can I take back up of that app installed on a specific client (I assume it would help me in recover an old app if anything goes wrong)? Will below command help me for this point?
    /opt/splunk/bin/splunk disable app -auth Username:Password

  2. "disabled-apps" folder will help me to revert the changes in any case?

Thanks in advance.

Regards,
Tejas

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

FrankVl
Ultra Champion
‎06-21-2019 02:18 AM

Before starting the update, the app on the client is the same as the app on the deployment server, right?

So just take a backup of the app on the deployment server before you replace the app with the new version. And then the clients will pull the update. In case of any issues, restore backup on deployment server and the clients will pull the old version again.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

FrankVl
Ultra Champion
‎06-21-2019 02:18 AM

Before starting the update, the app on the client is the same as the app on the deployment server, right?

So just take a backup of the app on the deployment server before you replace the app with the new version. And then the clients will pull the update. In case of any issues, restore backup on deployment server and the clients will pull the old version again.

0 Karma
Reply
Solved! Jump to solution

tbavarva
Path Finder
‎06-21-2019 03:21 AM

Thanks a lot Frank 🙂 and other folks Vijeta and paramagurukarthikeyan for your answers.

0 Karma
Reply
Solved! Jump to solution

tbavarva
Path Finder
‎06-20-2019 10:20 AM

Adding more on this:

Can we disable or take back up of any app from deployment server? If yes, how?

Regards,
Tejas

0 Karma
Reply
Solved! Jump to solution

paramagurukarth
Builder
‎06-21-2019 12:27 AM

In deployment server, Edit the app.conf and change the state manually.. and restart to push the modified
[install]
state=disabled

0 Karma
Reply
Solved! Jump to solution

Vijeta
Influencer
‎06-20-2019 12:50 PM

@tbavarva - You can copy the particular app folder from /opt/splunk/etc/apps/ from your deployment client to take back-up.

0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

REGISTER NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If ...

Observability | Use Synthetic Monitoring for Website Metadata Verification

If you are on Splunk Observability Cloud, you may already have Synthetic Monitoringin your observability ...

More Ways To Control Your Costs With Archived Metrics | Register for Tech Talk

Tuesday, May 14, 2024  |  11AM PT / 2PM ET Register to Attend Join us for this Tech Talk and learn how to ...