Hi All,
Hope you are doing good.
We have Splunk app for *nix installed on my Linux application servers and being used to monitor the stats. We have TaniumClient software installed on those servers and that partition related to this software doesn't have READ permission for the Splunk user. Due to this, we are seeing Permission Denied error messages when df.sh script from Splunk App for *nix runs.
So we decided to blacklist the /opt/Tanium/ partition in the df.sh script. So could you please help me how to blacklist this partition? Is it the same way we blacklist few logs in monitor stanza of inputs.conf?
Thanks in advance.
↧