When executing a SSH connection on the network to perform a task on your system you will be requested to answer “YES” to sharing a new certificate with that host, this can be painful when doing it for the first time. Especially if your connecting to numerous system with a for statement. So you can ignore the error by setting StrictHostKeyChecking to “no”, ie
ssh -o "StrictHostKeyChecking=no" root@hostname
Adding the splunk client service to chkconfig
sudo /etc/init.d/splunk stop
sudo chown -R splunk:splunk /opt/splunkforwarder/
sudo /opt/splunkforwarder/bin/splunk enable boot-start -user splunk
sudo /etc/init.d/splunk start
To determine is an account is disabled run
The hashed password field will begin with “!” if the account is disabled.
Run the following command to enable the account again.