Splunk 6.4 comes with an enhanced distributed management console, which supports new topology views, search head clustering views, index and storage utilization, and performance views. It also has added support to grant restricted access to admins so that they can manage specific parts of Splunk deployments.
The following are some of the new features added in Splunk 6.4 under the distributed management console:
The HTTP Event Collector: The management console enlists the entire HTTP Event Collector input classified on the basis of the authorization token. This feature enables the admin to understand and get insight of the data coming in via the
HTTP collector input
method.Search statistics: The console lists the heaviest/long running searches classified on the basis of users. This feature can be used to find out those searches that are causing overhead on Splunk servers.
I/O statistics: The I/O utilization of bandwidth for Splunk instances is shown to take necessary...