Migration Issues
The activity that happened was.... Splunk instance migrated from on-prem to cloud environment.
Issue:
After Migration to cloud, On-Prem forwarders are not able to connect properly. (HTTP Event Collector Connection Fails)
Root Cause:
- Splunk App for Stream is not able to generate and detect HEC tokens automatically.
Solution:
- Need to do fresh installation of “Splunk App for Stream“ without putting local configurations back.
Warning: Make sure you have taken the proper backup before you proceed.