Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Getting Data In
Getting Data In
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
Options
- Mark all as New
- Mark all as Read
- Float this item to the top
- Subscribe
- Bookmark
- Subscribe to RSS Feed
- Threaded format
- Linear Format
- Sort by Topic Start Date
Community Activity
 | Hi,I just wanted to ask if there are specific ways or cli commands to check if my log sources adhere to CIM?I've chec... by mohdmikhael Explorer in Getting Data In 10-30-2022 0 1 | 0 | 1 | |
 | hi , I have the below query. Index=Config source =“Java/path/ log.csv” inbound Csv files are supposed to be delivere... by Chinni611 Loves-to-Learn Lots in Getting Data In 10-30-2022 0 7 | 0 | 7 | |
| | Hi all, I am new to Splunk and am trying to look for logs that indicate that the SplunkD service shutdown. I am tryin... by McMac84 Engager in Getting Data In 10-28-2022 0 2 | 0 | 2 | |
 | I have suspicious that my outputs.conf configuration files are causing some unwanted data cloning in my forwarders. I... by calvinmcelroy Path Finder in Getting Data In 10-28-2022 0 3 | 0 | 3 | |
| | Hi Splunkers. I'm trying to extract fields from Windows DNS debug logs but running into extraction issues for some ev... by torowa Path Finder in Getting Data In 10-28-2022 0 1 | 0 | 1 | |
| | I am trying to set up Content-Security-Policy, and I need a way to collect violation reports. I was hoping to use Spl... by cbarthel Engager in Getting Data In 10-27-2022 1 2 | 1 | 2 | |
| | Hi , Splunk adding additional double quotes when I export the data as csv . When I use the exported file as event... by vksplunk1 Explorer in Getting Data In 10-27-2022 0 3 | 0 | 3 | |
| | Hi , We have an add-on which will JSON format for data input. I can export the data as JSON format. Could you pleas... by vksplunk1 Explorer in Getting Data In 10-27-2022 1 0 | 1 | 0 | |
| | Hi, I have a logfile that contains lots of hosts (coming in from syslog). I want to dynamically change the sourcetype... by a212830 Champion in Getting Data In 10-27-2022 0 8 | 0 | 8 | |
| | Hi, We upgraded Splunk from 8.2.6 to 9.0.1 recently and have one big internal app ( dashboard, views, field extracti... by rashiagrawal Loves-to-Learn Lots in Getting Data In 10-27-2022 0 1 | 0 | 1 | |
 | Hi Splunkers I'm trying to extract some fields using the opting under the log "Extract Fields" using the regix metho... by muradgh Path Finder in Getting Data In 10-26-2022 0 2 | 0 | 2 | |
 | Hi Community, We have a cluster setup for our Splunk install where all the data are indexed at the data layer (data... by _pravin Contributor in Getting Data In 10-26-2022 0 9 | 0 | 9 | |
| | Figuring out the best add-on(s) to ingest security data related to O365/Azure is an exercise in insanity... Can we ge... by splunkUser00 Engager in Getting Data In 10-26-2022 2 0 | 2 | 0 | |
| | Hello - I am trying to troubleshoot an issue and have not had much success in determining a root cause. I was wonderi... by calvinmcelroy Path Finder in Getting Data In 10-26-2022 0 7 | 0 | 7 | |
 | Hi Guru, How do we exclude 0% process usage from Hostmetrics? We would like to capture those process have >0% usage ... by fongpen Path Finder in Getting Data In 10-26-2022 0 6 | 0 | 6 | |
| | I want to input into splunk the "events" of my fire alarms of all the branch offices.Is there a way I can manually cr... by dritjon Path Finder in Getting Data In 10-25-2022 0 1 | 0 | 1 | |
| | I am new to Splunk and I need help to get a query that lists all the domains that are in my logs (that were accessed ... by waJesu Path Finder in Getting Data In 10-25-2022 0 2 | 0 | 2 | |
| | I'm trying to redact the description field from the Service WinHostMon to have something like that: Before: Typ... by JChris_ Path Finder in Getting Data In 10-25-2022 0 1 | 0 | 1 | |
| | We are receiving logs from imap before but it suddenly stops indexing data. No recent changes was made on our end. Ou... by Essa New Member in Getting Data In 10-25-2022 0 0 | 0 | 0 | |
 | Hello All, we have a default database:internal sourcetype for a application using DBConnect to send data to Splunk a... by im_bharath Path Finder in Getting Data In 10-25-2022 0 3 | 0 | 3 | |
 | I am making a test in python where I want to validate if an ITSI kpi works as expected. Lets say I have an index call... by sboogaar Path Finder in Getting Data In 10-25-2022 0 2 | 0 | 2 | |
| | I want to test if my ITSI kpi's are working as expected, im creating fake events, with collect, that should trigger t... by sboogaar Path Finder in Getting Data In 10-25-2022 0 2 | 0 | 2 | |
| | i wanted to search for the websites/urls that people visited today and for a particular user. i tried this but I did... by codeJesus Engager in Getting Data In 10-25-2022 0 1 | 0 | 1 | |
| | How do we specify multiple output groups on a HEC token, like _TCP_ROUTING for monitor stanzas? by beaunewcomb Communicator in Getting Data In 10-24-2022 0 0 | 0 | 0 | |
| | Hi all, I have written below metadata search to find the hosts which have reported yesterday, but not reporting in t... by lohit Path Finder in Getting Data In 10-24-2022 0 6 | 0 | 6 |
Get Started
Explore Essential Splunk Resources
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Get Expert Help at Community Office Hours
Join the #getting-data-in Slack channel
Top Labels
-
add-on
2 -
administration
12 -
AIX
1 -
audit
1 -
blacklist
92 -
CLI
1 -
configuration
32 -
CSV
208 -
data
474 -
development
5 -
encryption
1 -
eval
2 -
field extraction
552 -
fields
5 -
forwarder
1 -
forwarder management
3 -
heavy
1 -
heavy forwarder
939 -
host
155 -
HTTP Event Collector
437 -
index
539 -
indexer
704 -
indexing performance
1 -
inputs.conf
829 -
installation
5 -
intermediate forwarder
142 -
introduction
3 -
JSON
390 -
kvstore
1 -
Linux
453 -
login
1 -
Mac
30 -
metadata
1 -
metrics
2 -
modular input
189 -
monitor
308 -
monitoring console
1 -
other
49 -
proactive Splunk component monitoring
2 -
props.conf
975 -
regex
5 -
saved search
2 -
scripted input
242 -
search
1 -
search head
2 -
search job inspector
1 -
source
291 -
sourcetype
493 -
Splunk Enterprise
1 -
Splunk Investigate
1 -
splunk-assist
2 -
subsearch
1 -
syslog
317 -
time
204 -
transforms.conf
575 -
troubleshooting
15 -
universal forwarder
1,551 -
using Enterprise Security
3 -
using Splunk Cloud
4 -
using Splunk Enterprise
16 -
whitelist
60 -
Windows
587 -
XML
90
- « Previous
- Next »
Get Updates on the Splunk Community!
Index This | What is broken 80% of the time by February?
December 2025 Edition
Hayyy Splunk Education Enthusiasts and the Eternally Curious!
We’re back with this ...
Unlock Faster Time-to-Value on Edge and Ingest Processor with New SPL2 Pipeline ...
Hello Splunk Community,
We're thrilled to share an exciting update that will help you manage your data more ...
Splunk MCP & Agentic AI: Machine Data Without Limits
Discover how the Splunk Model Context Protocol (MCP) Server can revolutionize the way your organization uses ...
