All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Netscaler - Pulling syslog Data - UI Still Wants Setup

nychawk
Communicator
‎07-09-2015 08:30 AM

I have several Netscalers sending their data to syslog. My syslog server has UF installed, and my inputs.conf is setup in the following manner:

[monitor:///syslog-data/all-my-netscalers-in-one.log]
source=syslog
sourcetype=citrix:netscaler:syslog
host =

When I go to my search head, and select the Netscaler app, I get queried for the apps setup, which is asking for netscaler devices, user and passwords; I am not expecting this.

I've verified that my data is getting indexed.

I am missing something, I've scrubbed the apps doc, and not sure what else is needed.

Thanks all in advance,

-mi

0 Karma
Reply

jcoates_splunk
Splunk Employee
Splunk Employee
‎07-11-2015 06:23 PM

Hi, the app is currently separate from the add-on; while that might change in the future, you're probably better off taking it the other direction. I would try following the Add-on's documentation to get the data in, then let's see if the App works with that data. Since the App has its own inputs, you might want to disable those and start from the Add-on's documentation. Since the Add-on is supported, you can open a ticket if following the documentation doesn't produce the expected data, we'd be happy to look into it further.

0 Karma
Reply

darlas
Communicator
‎02-08-2017 03:58 PM

Can you specify what the name of the App is? The documentation for this Add-on says "After the Splunk platform indexes the events, you can consume the data using the prebuilt panels included with the add-on", which makes it sounds like the visualization is contained in this Add-on. Appreciate any clarification on this.

Thanks.

0 Karma
Reply

Skins
Path Finder
‎05-20-2018 06:13 PM

there are 4 pre-built panels included in the TA which you can add to dashboards.

0 Karma
Reply
Get Updates on the Splunk Community!

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...