All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Qualys Technology Add on Error

manish_singh_77
Builder
‎03-24-2020 05:46 AM

Hi @lakshman239

We have installed "Qualys TA" in our HF instance, configured the credentials and data inputs for "fim events" but when we search the events in our search head it doesn't show up.

We get this error message : [idx-123-abc.splunkcloud.com] Search process did not exit cleanly, exit_code=255, description="exited with code 255". Please look in search.log for this peer in the Job Inspector for more info.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

manish_singh_77
Builder
‎03-26-2020 01:58 AM

Issue got resolved, credentials and api url was not correct. After entering the correct information, it worked.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

manish_singh_77
Builder
‎03-26-2020 01:58 AM

Issue got resolved, credentials and api url was not correct. After entering the correct information, it worked.

0 Karma
Reply
Solved! Jump to solution

manish_singh_77
Builder
‎03-26-2020 01:57 AM

Issue got resolved, credentials and api url was not correct. After entering the correct information, it worked.

0 Karma
Reply
Solved! Jump to solution

manish_singh_77
Builder
‎03-24-2020 10:40 PM

@richgalloway @lakshman239

Do we need to install "Qualys TA Add On" on both HF and SH in the distributed environment?

We would like to see only "FIM Events" in SH.

0 Karma
Reply
Solved! Jump to solution

manish_singh_77
Builder
‎03-26-2020 12:13 AM

@richgalloway @lakshman239

I am getting this error message now in the Search Head:

[MainThread] ERROR: Error in connection: [Errno -5] No address associated with hostname . Sleeping for 300 seconds and retrying. Retry count: 3

0 Karma
Reply
Solved! Jump to solution

manish_singh_77
Builder
‎03-26-2020 01:57 AM

@richgalloway @lakshman239

Issue got resolved, credentials and api url was not correct. After entering the correct information, it worked.

0 Karma
Reply
Solved! Jump to solution

richgalloway
SplunkTrust
SplunkTrust
‎03-24-2020 06:12 AM

What did you find in search.log?

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply
Solved! Jump to solution

manish_singh_77
Builder
‎03-24-2020 09:54 PM

Nothing much

0 Karma
Reply
Solved! Jump to solution

richgalloway
SplunkTrust
SplunkTrust
‎03-25-2020 05:52 AM

The app's page on splunkbase has a link for support. I suggest you contact them.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply
Get Updates on the Splunk Community!

Unlock Database Monitoring with Splunk Observability Cloud

  In today’s fast-paced digital landscape, even minor database slowdowns can disrupt user experiences and ...

Purpose in Action: How Splunk Is Helping Power an Inclusive Future for All

At Cisco, purpose isn’t a tagline—it’s a commitment. Cisco’s FY25 Purpose Report outlines how the company is ...

[Upcoming Webinar] Demo Day: Transforming IT Operations with Splunk

Join us for a live Demo Day at the Cisco Store on January 21st 10:00am - 11:00am PST In the fast-paced world ...