Topics

| pdf version

Toolbox

Splunk > The IT Search Company

  • Search and navigate IT data from applications, servers and network devices in real-time.
  • Download Splunk

Localized Splunk documentation

Looking for Splunk documentation in other languages?

Documentation | Discussion | View source | History

Install on Solaris

This documentation applies to the following versions of Splunk: 4.0 , 4.0.1 , 4.0.2 , 4.0.3 , 4.0.4 , 4.0.5 , 4.0.6 , 4.0.7 , 4.0.8 , 4.0.9 , 4.0.10

Install on Solaris

This topic provides the procedures for installing Splunk on Solaris.

Install Splunk

Splunk for Solaris is available as a PKG file or a tarball.

PKG file install

The PKG installation package includes a request file that prompts you to answer a few questions before Splunk installs. 

pkgadd -d ./splunk_product_name.pkg

A list of the available packages is displayed.

  • Select the packages you wish to process (the default is "all").

The installer then prompts you to specify a base installation directory.

  • To install into the default directory, /opt/splunk, leave this blank.

PKG file upgrade

To upgrade an existing Splunk installation using a PKG file, use the same command line as you would for a fresh install. 

pkgadd -d  ./splunk_product_name.pkg

You will be prompted to overwrite any changed files, answer yes to every one.

To run the upgrade silently (and not have to answer yes for every file overwrite), type: 

pkgadd -n -d  ./splunk_product_name.pkg

Tarball install

To install Splunk on a Solaris system, expand the tarball into an appropriate directory. By default, Splunk installs into /opt/splunk/.

When installing with the tarball:

  • Splunk does not create the splunk user automatically. If you want Splunk to run as a specific user, you must create the user manually.
  • Be sure the disk partition has enough space to hold the uncompressed volume of the data you plan to keep indexed.

What gets installed

Splunk package info: 

pkginfo -l splunk

List all packages: 

pkginfo

Start Splunk

Splunk can run as any user on the local system. If you run Splunk as a non-root user, make sure that Splunk has the appropriate permissions to read the inputs that you specify. For more information, refer to the instructions on running Splunk as a non-root user.

To start Splunk from the command line interface, run the following command from $SPLUNK_HOME/bin directory (where $SPLUNK_HOME is the directory into which you installed Splunk): 

 ./splunk start


By convention, Splunk's documentation uses:

  • $SPLUNK_HOME to identify the path to your Splunk installation.
  • $SPLUNK_HOME/bin/ to indicate the location of the command line interface.

Startup options

The first time you start Splunk after a new installation, you must accept the license agreement. To start Splunk and accept the license in one step: 

 $SPLUNK_HOME/bin/splunk start --accept-license

Note: There are two dashes before the accept-license option.

Launch Splunk Web and log in

After you start Splunk and accept the license agreement,

1. In a browser window, access Splunk Web at http://mysplunkhost:port, where:

  • mysplunkhost is the host machine.
  • port is the port you specified during the installation (8000).

2. Splunk Web prompts you for login information (default, username admin and password changeme) before it launches. If you switch to Splunk Free, you will bypass this logon page in future sessions.

Now that you've installed Splunk, what comes next?

Uninstall Splunk

Use your local package management commands to uninstall Splunk. In most cases, files that were not originally installed by the package are retained. These files include your configuration and index files which are under your installation directory. 

pkgrm splunk
Retrieved from "http://www.splunk.com/base/Documentation/4.0.10/Installation/InstallonSolaris"
Revision: 207 Contact Privacy Policy Terms of Use Community content licensed under Creative Commons

Copyright © 2005-2010 Splunk Inc. All rights reserved.