Getting Data In

Discussions

Thread Info

Getting a "TcpOutputProc - LightWeightForwarder/UniversalForwarder not configured. Please configure outputs.conf." error.

Here is my outputs.conf : [tcpout] server=myserver.com:9997 Not sure, why we are receiving this error when we ...

by Path Finder in

After installing a universal forwarder on Ubuntu 14.04 LTS, why am I getting an error trying to accept the license?

I have installed the forwarder in /opt/splunkforwarder and run the splunk start command. I get the license to read/ac...

by Engager in

How to configure Splunk to monitor all Cisco switches, routers, and firewalls in our network?

I'm new to the Splunk tool. I heard very good feedback about Splunk and I want to implement in our company. I want to...

by New Member in

How to upgrade 15 Solaris hosts from Splunk 4.1.3 to 6.4.0 universal forwarders?

As unix support staff drafted to be an inexperienced Splunk support staffer, I hope I can appeal to someone who knows...

by New Member in

How to disable a search peer via the CLI or REST API call?

Hi Splunkers, Is there a way to disable a search peer via the CLI or an API call? Specifically, I would like t...

by Path Finder in

Should Splunk be barking back at this type of time stamp string? 2016/04/07T10:04:02.113[+0000] ? I can't tell if it meets the ISO standard.

Hello Splunkers, I have a timestamp below that does not seem to want to get recognized / converted properly by Spl...

by Communicator in

What is the order of precedence transforms are applied within a single props.conf stanza?

Given a couple transforms.conf stanzas that both operate on the host field (index-time manipulation), reading from th...

by SplunkTrust in

Two diffent indexes

Is it possible to send different logs on two different indexes [default] host = EDGE1 [script://$SPLUNK_HOME\bi...

by Path Finder in

How to configure a local Splunk Enterprise instance as both a forwarder and indexer?

Hi, I have installed Splunk Enterprise version locally and configured the below from Splunk Web. 1-forwarding host...

by Explorer in

If we plan to ingest roughly 10 GB of logs daily, how much extra data should I consider being added to indexing done by the Splunk server?

As we begin to plan out our deployment of Splunk, one thing is starting to puzzle me, and this is mostly a "should we...

by Explorer in

'Invalid Key in Stanza' errors being generated at startup for inputs.conf whitelist on a 6.1.4 Heavy Forwarder that docs say should work

Per these docs http://docs.splunk.com/Documentation/Splunk/6.1.4/Data/MonitorWindowsdata I have changed from the old ...

by Motivator in

Is it possible to configure inputs.conf to forward events based on "Custom Views" in Microsoft Event Viewer?

Hi Splunk Community, Can one configure inputs.conf to forward events based on a "Custom Views" in Event Viewer? Sp...

by New Member in

Why are text input fields unexpectedly blank in custom alert action UI?

I am developing an add-on that adds a custom alert action. I've built a custom HTML fragment (as described in the cus...

by Explorer in

Is there a unique ID assigned to each forwarder to help me determine from which forwarder certain indexed data belongs to?

Hi, I have set up multiple forwarders sending events to a remote indexer. I am going to use the indexed data for f...

by Explorer in

ERROR TcpOutputProc - LightWeightForwarder/UniversalForwarder not configured. Please configure outputs.conf.

Team, In one of the Unix servers where SplunkForwarder is running, I have the below log in the splunkd.log file. O...

by New Member in

Get Updates on the Splunk Community!

Getting Data In

Discussions

Getting a "TcpOutputProc - LightWeightForwarder/UniversalForwarder not configured. Please configure outputs.conf." error.

After installing a universal forwarder on Ubuntu 14.04 LTS, why am I getting an error trying to accept the license?

How to configure Splunk to monitor all Cisco switches, routers, and firewalls in our network?

How to upgrade 15 Solaris hosts from Splunk 4.1.3 to 6.4.0 universal forwarders?

How to disable a search peer via the CLI or REST API call?

Should Splunk be barking back at this type of time stamp string? 2016/04/07T10:04:02.113[+0000] ? I can't tell if it meets the ISO standard.

What is the order of precedence transforms are applied within a single props.conf stanza?

Two diffent indexes

How to configure a local Splunk Enterprise instance as both a forwarder and indexer?

If we plan to ingest roughly 10 GB of logs daily, how much extra data should I consider being added to indexing done by the Splunk server?

'Invalid Key in Stanza' errors being generated at startup for inputs.conf whitelist on a 6.1.4 Heavy Forwarder that docs say should work

Is it possible to configure inputs.conf to forward events based on "Custom Views" in Microsoft Event Viewer?

Why are text input fields unexpectedly blank in custom alert action UI?

Is there a unique ID assigned to each forwarder to help me determine from which forwarder certain indexed data belongs to?

ERROR TcpOutputProc - LightWeightForwarder/UniversalForwarder not configured. Please configure outputs.conf.

What’s New in Splunk Cloud Platform 9.1.2308?

Index This | Why do they call it hyper text?

State of Splunk Careers 2023: Career Resilience and the Continued Value of Splunk

Blue Prism Data Gateway integration with Splunk

Journald exclude specific services

Combine multiple index searches into one overall s...

Custom Attribute Retrieval in VMware App (Add-on f...

Need to convert the timezone dynamically