All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

McAfee DB Mon REST API Integration not showing results ?

deepan1n1
New Member
‎08-12-2015 06:43 AM

I am trying to add McAfee DM Mon tool to Splunk via REST Data Input (XML format). I have the index created, all the fields on UI is filled in (url/basic auth/usrname/auth passwd/sourcetype/index ..etc). But no data is being seen in search. Is there any config file I need to be looking into ?

0 Karma
Reply

deepan1n1
New Member
‎08-14-2015 04:04 AM

Managed to sort this out. Apparently there was proxy field to be filled in which I wasn't told before.

0 Karma
Reply

mreynov_splunk
Splunk Employee
Splunk Employee
‎08-12-2015 10:11 AM

what do you mean when you say " all the fields on UI is filled in"? - are you seeing data?
I would try a couple of things:
1. are you seeing errors in index=_internal? are you sure something is coming back from your API calls? Can you try to hit it directly and get results?
2. if the answer to the above is yes, check permissions for your knowledge bundles

0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...