splunk integration with nagios

The initial splunk version we had was 4.0.x, we recently upgraded to 4.1.3 , since then our nagios alerts for splunk have started showing up, we use LDAP in our splunk base,

the hardcoded command used in nrpe.cfg for nagios is

./check_splunk search -u 'username' -p passwd -c 2 -w 1 'sourcetype="CFApplicationLog" startminutesago=5 | regex _raw=Application Initialized'

We are now receiving 'Unable to search splunk' alert for this

is check_splunk plugin for nagios still valid for this version of splunk

nagios

asked 17 Jul '10, 10:11

heterodyned
83●12
accept rate: 14%

One Answer:

oldest newest most voted

Hi rvenkatesh, please take a look at this post as it addresses your questions and problems with the old Nagios-Splunk plugin:

Are there any plans to resurrect the Nagios check_splunk plugin?

link

answered 01 Sep '10, 17:11

hulahoop ♦
2.4k●1●1●31
accept rate: 40%

Would this Nagios app be operational for Splunk 4.1.3 ?

http://splunkbase.splunk.com/apps/All/4.x/Add-On/app:Splunk+for+Nagios

(05 Nov '10, 13:26) heterodyned

Yes, Splunk for Nagios works on any 4.x release of Splunk. I am the developer of the app so please keep me posted with your progress :)

(17 Nov '10, 03:14) Luke Harris

Post your answer

toggle preview

Follow this question

Email:

RSS:

Answers

Answers + Comments

Markdown Basics

*italic* or _italic_
**bold** or __bold__
link:[text](http://url.com/ "title")
image?![alt text](/path/img.jpg "title")
numbered list: 1. Foo 2. Bar
to add a line break simply add two spaces to where you would like the new line to be.
basic HTML tags are also supported

learn more about Markdown

Tags:

nagios ×208

Asked: 17 Jul '10, 10:11

Seen: 1,257 times

Last updated: 23 Dec '10, 00:22

splunk integration with nagios

Follow this question

Splunk Resources

Related questions