We are receinving the error below in our environment after deploying the Splunk Add-on for Microsoft Windows:
ERROR ExecProcessor - message from ""C:\Program Files\SplunkUniversalForwarder\bin\splunk-MonitorNoHandle.exe"" splunk-monitornohandle - configure: no drive specifier found: '$windir\system32\dns\dns.log'
The target systems are running Windows Server 2012 R2 Standard, and the universal forwarder is running as the local system account.
Splunk Component Versions:
Splunk Enterprise 8.0.1
Splunk Universal Forwarder 7.3.4
Splunk Add-on for Microsoft Windows 7.0.0
Any guidance on troubleshooting this would be greatly appreciated.
↧