All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Why is the Palo Alto app configuration page showing "Page not found"?

tecooper
Explorer
‎03-07-2019 09:36 AM

The Palo Alto app was previously working, all dashboards displayed data. Now it's not working. I'm working through the troubleshooting steps here https://splunk.paloaltonetworks.com/troubleshoot.html and pretty sure it's a parsing issue. I'm working with the Networking team (who set up the PA) to check the syslog settings. But in the meantime, when I go to the Configuration page, I get Buttercup and page not found. I'm assuming this is a separate issue, and I have no idea what to do. Can anyone help me?

We have only 1 Splunk server, running 7.2.4.2. It's on prem. Both the Palo Alto app (6.1.1) and TA (6.1.1) are installed.

Reply

tecooper
Explorer
‎03-07-2019 12:56 PM

Most of the app is fixed. All of the dashboards work. I had to go to Settings/Data Models and enable acceleration for the 4 SplunkforPaloAltoNetworks data models (Step 4. Check acceleration and summary indexing). And then I had to update it because the date was showing 12/31/69. Once I did that, the dashboards started populating.

Under Step 3. Verify logs are parsed correctly in the above link, it says to do a search for eventtype=pan_config. I was stuck there because I wasn't getting any results. I finally changed it to pan* and got results. There aren't any pan_config eventtypes.

0 Karma
Reply

raja8220
New Member
‎04-09-2019 07:23 AM

I have done the steps but still not working getting page not found in dashboard object.

0 Karma
Reply
Get Updates on the Splunk Community!

Build Scalable Security While Moving to Cloud - Guide From Clayton Homes

 Clayton Homes faced the increased challenge of strengthening their security posture as they went through ...

Mission Control | Explore the latest release of Splunk Mission Control (2.3)

We’re happy to announce the release of Mission Control 2.3 which includes several new and exciting features ...

Cloud Platform | Migrating your Splunk Cloud deployment to Python 3.7

Python 2.7, the last release of Python 2, reached End of Life back on January 1, 2020. As part of our larger ...