Support Questions

Find answers, ask questions, and share your expertise
Announcements
Celebrating as our community reaches 100,000 members! Thank you!

Issue with PutSplunkHTTP - The requested URL was not found on this server

avatar
New Contributor

Hello everyone,

I have an issue with PutSplunkHTTP processor trying to push some Sysmon logs to my Splunk Indexer.

Both NiFi and Splunk are in the same system (Windows).

I keep receiving an error:
"Error 404 - The requested URL was not found on this server"

I use curl from a Linux box and event is added:

curl -k http://ipaddress:8088/services/collector/raw?=a98d4602-3a79-4dbc-b733-0977d2aaaec7 -H "Authorization: Splunk <token>" -d '{"event": "Hello, world!", "sourcetype": "manual"}'

hec.PNGcurl.PNGputsplunkhttp_conf.PNG

Using latest NiFi 2.0.0-M2 Release and Splunk

Any help would be appreciated.

Thank you.

1 ACCEPTED SOLUTION

avatar
New Contributor

Hello,

Issue was resolved in NiFi's Slack Channel. Apparently I filled in username/password for Splunk in PutSplunkHTTP processor which are also passed in the final URL and are actually not needed. They were removed and now data go to Splunk via HEC.

Thanks

View solution in original post

2 REPLIES 2

avatar
Community Manager

@bibibo Welcome to the Cloudera Community!

To help you get the best possible solution, I have tagged our NiFi experts @SAMSAL @MattWho  who may be able to assist you further.

Please keep us updated on your post, and we hope you find a satisfactory solution to your query.


Regards,

Diana Torres,
Community Moderator


Was your question answered? Make sure to mark the answer as the accepted solution.
If you find a reply useful, say thanks by clicking on the thumbs up button.
Learn more about the Cloudera Community:

avatar
New Contributor

Hello,

Issue was resolved in NiFi's Slack Channel. Apparently I filled in username/password for Splunk in PutSplunkHTTP processor which are also passed in the final URL and are actually not needed. They were removed and now data go to Splunk via HEC.

Thanks