Are you looking for steps to install Splunk on Ubuntu? Here are the steps for it.

Here at Bobcares, we have seen several such Ubuntu related installations as part of our Server Management Services for web hosts and online service providers.

Today we’ll see how to install Splunk on Ubuntu.

How to install Splunk 8.0 on Ubuntu

Here are the steps our Support Engineers follow to install Splunk.

1. First, move the .deb file to the /tmp folder

$ mv splunk-8.0.0-1357bef0a7f6-linux-2.6-amd64.deb /tmp
$ cd /tmp

As a result, of the above command, it will move the installation file to the /tmp folder, where you can safely proceed with the Splunk installation. Also, you change the directory to the /tmp folder.

2. Next, install Splunk 8.0 on Ubuntu. For that, run the below command.

$ sudo dpkg -i splunk-8.0.0-1357bef0a7f6-linux-2.6-amd64.deb

As a result, you must see a message below.

Selecting previously unselected package splunk. (Reading database … 159633 files and directories currently installed.) Preparing to unpack splunk-8.0.0-1357bef0a7f6-linux-2.6-amd64.deb … Unpacking splunk (8.0.0) … Setting up splunk (8.0.0) … complete

3. At the boot, start the Splunk and enter the administrator username and password (accept license)

$ sudo /opt/splunk/bin/splunk enable boot-start

The above command will start the Splunk every time your machine boots. Also, the Splunk Software License Agreement will be shown to you at this point. Make sure you go through the entire thing until you reach 100% and accept.

Then you must see the below message once you accept.

This appears to be your first time running this version of Splunk. Splunk software must create an administrator account during startup. Otherwise, you cannot log in. Create credentials for the administrator account. Characters do not appear on the screen when you type in credentials. Please enter an administrator username:

Now follow the instructions and choose your desired username then set a strong password.

After entering the password, the configuration process completes.

4. Run the below command to start the Splunk service.

$ sudo service splunk start

5. Lastly, it’s time to get to the web interface and start to tinker with your data.

Open any browser and enter localhost:8000 in the address bar. This will display the Splunk web login interface. Now, enter the username and password that you set up after accepting the license. You must be in.

[Need any further assistance with Ubuntu queries? – We are here to help you.]

Conclusion

In short, to install Splunk on Ubuntu first, move the .deb file to the /tmp folder, run the installation command, and at boot time set the username and password. Finally, start Splunk and access it in the browser. Today, we saw how our Support Engineers install it.