Splunk 6.4 comes with an enhanced distributed management console, which supports new topology views, search head clustering views, index and storage utilization, and performance views. It also has added support to grant restricted access to admins so that they can manage specific parts of Splunk deployments.
The following are some of the new features added in Splunk 6.4 under the distributed management console:
- The HTTP Event Collector: The management console enlists the entire HTTP Event Collector input classified on the basis of the authorization token. This feature enables the admin to understand and get insight of the data coming in via the
HTTP collector inputmethod. - Search statistics: The console lists the heaviest/long running searches classified on the basis of users. This feature can be used to find out those searches that are causing overhead on Splunk servers.
- I/O statistics: The I/O utilization of bandwidth for Splunk instances is shown to take necessary actions whenever required. Along with this distributed console, it also provides options for threshold control. It can be used to control the CPU/memory, indexing rate, concurrency, and so on, and maintain the health of Splunk's distributed environment.
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.