All Apps and Add-ons
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to make the errors go away in SideView dashboard?

responsys_cm
Builder
‎03-30-2018 01:40 PM

I've created a dashboard in SideView that utilizes primarily datamodel searches. There is one search on raw events. I have created a number of event types for those raw events to get them to flow into the data models.

A couple of those event types were deleted months ago. When I add a search on raw events to the dashboard that would have been captured by those deleted event types, I see a warning at the top:

Eventtype 'Auditd -- New File Created' does not exist or is disabled.
Eventtype 'Auditd -- File Modified' does not exist or is disabled.

Using the same raw event search on a native Splunk dashboard doesn't throw any errors.

What do I have to do to make these errors go away, Nick?

Thx.

Craig

0 Karma
Reply

logloganathan
Motivator
‎03-30-2018 11:50 PM

could you please provide your query

0 Karma
Reply
Get Updates on the Splunk Community!

Unleash Unified Security and Observability with Splunk Cloud Platform

     Now Available on Microsoft AzureOn Demand Now Step boldly into the AI revolution with enhanced security ...

Enterprise Security Content Update (ESCU) | New Releases

In March, the Splunk Threat Research Team had 2 releases of security content via the Enterprise Security ...

Join the Splunk Developer Program Hackathon: Splunk Build-a-thon!

The Splunk Developer Program is launching in beta, and we’re celebrating with an exciting hackathon! This is ...
Top