1) Download Splunk TAR file, splunk-8.1.0.1-24fd52428b5a-Linux-x86_64.tgz, to the folder, /usr/local/sbin/.
2) Execute the following commands:
# cd /usr/local/sbin
# tar -zxvf ./splunk-8.1.0.1-24fd52428b5a-Linux-x86_64.tgz -C /opt
3) Launch Splunk by executing the command below:
# /opt/splunk/bin/splunk start
4) For the first time you launch Splunk, you need to tap the SPACE button all the way to end before type y and the ENTER button to exit the Term of Service page.
5) After that, create an administrator account by following the instruction.
6) In order to have Splunk start up, execute the following commands to create a startup script:
# vi /etc/systemd/system/splunk.service
[Unit]
Description=Splunk server
[Service]
ExecStart=/opt/splunk/bin/splunk start
KillMode=process
[Install]
WantedBy=multi-user.target
Alias=splunk.service
:wq
7) Make Splunk as a startup script and launch it:
# systemctl enable splunk.service
# systemctl start splunk.service
8) At the end, launch a web browser to access http://IP:8000/.
No comments:
Post a Comment