Getting Data In

Community Activity

Why is Splunk unable to detect modified files when monitoring files on CIFS mount? I have a CIFS mount from Azure on a server. Then a Splunk forwarder monitoring the mounted folder. I discovered that... by yannK Splunk Employee in Getting Data In 05-29-2025 1 3	1	3
Splunk Start fails after upgrading from 9.3.1 to 9.4.0 Yesterday I upgraded Splunk on one of my Deployment Servers from 9.3.1 with the 9.4.0 rpm on a Amazon Linux host and ... by gazoscreek Path Finder in Getting Data In 05-28-2025 0 4	0	4
Need to write a regex for time extraction Need to write a regex for same as time and same as event given below in image by Praz_123 Communicator in Getting Data In 05-27-2025 0 12	0	12
Need Proper props configuration for extracting date-time information and breaking down events. Need to know while am adding the data in splunk am getting the below error Same data would be like :-{<!-- -->"version": "200... by Praz_123 Communicator in Getting Data In 05-27-2025 0 9	0	9
Heavy Forwarder - Filtering Juniper events Greetings, I have been reading through documentation and responses on here about filtering out specific events at the... by braxton839 Explorer in Getting Data In 05-27-2025 0 8	0	8
HAProxy server client IP I have a serious problem, please help me. We have an HAProxy server that receives logs from various clients and for... by Nrsch Explorer in Getting Data In 05-27-2025 0 8	0	8
Manage engine ITSM Hi Team, I need help with Manage engine ticketing tool integration with Splunk i have researched in Google did not f... by Karthickb2308 Engager in Getting Data In 05-27-2025 0 5	0	5
Connect Splunk to SAP Hana Database Hi,We want to connect Splunk to SAP Hana Database.Have you some idea ?Do we use ngdbc.jar and Put that driver in: $SP... by hv64 Explorer in Getting Data In 05-26-2025 0 3	0	3
Setting _time when field is inconsistent in Json ingestion I have a Json file which contains a "date" field. The date field in my data that can either be of format %Y-%m-%d %H:... by cherrypick Path Finder in Getting Data In 05-24-2025 0 10	0	10
Using different certificates for TCP and HEC Input results in 'unknown CA' error I recently started using the HEC with TLS on my standalone testing instance and now I am seeing some behavior that I ... by zapping575 Communicator in Getting Data In 05-23-2025 0 3	0	3
Why is User is not allowed to modify the job error? Hi all. One of our users cannot upload files to splunk with the error "User is not allowed to modify the job". The u... by kakawun Explorer in Getting Data In 05-22-2025 1 12	1	12
Log retention with archiving in Splunk for a specific index Hello,I'm looking to set up a log retention policy for a specific index, for example index=test.Here's what I'd like ... by BRFZ Communicator in Getting Data In 05-22-2025 0 2	0	2
Outdated OS Where can i get list of all outdated OS for my dashboard. Is there a site or something by SN1 Path Finder in Getting Data In 05-21-2025 0 5	0	5
Splunk Server logs to 3rd party using an Indexer We have installed Splunk in windows and we want to send windows logs from Search Head, LM and CM to 3rd party using a... by malisushil119 Explorer in Getting Data In 05-21-2025 0 15	0	15
Splunk Slowness What are the reasons for the slowness observed in the Splunk Mission Control incident review dashboard? by msatish Path Finder in Getting Data In 05-21-2025 0 2	0	2
Unique universal forwarder to multiple destinations Hello,Is it possible to have only 1 Universal Forwarder installed on a Windows server and this UF sends data to 2 dif... by Flobzh Explorer in Getting Data In 05-20-2025 0 4	0	4
Loosing logs for a specific host in several hours. Hi All. Using Splunk for collecting logs from different devices. But logs from on devices on the network , is not p... by dendel Observer in Getting Data In 05-19-2025 0 8	0	8
Why is my log file sometimes ignored? Self-answered question follows. Perhaps it will help someone else in the same boat. I have a file called portal-serv... by twinspop Influencer in Getting Data In 05-19-2025 0 2	0	2
Extract key=value into field [cmd_data=list cm device recusive]splunk auto extracts just [cmd_data=list]End result - be able to filter on cmd data... by splunkville Observer in Getting Data In 05-16-2025 0 1	0	1
ESXi and vSphere logs Hello all,I am reviewing the Splunk add-on for vCenter Log and the Splunk add-on for VMware ESXi logs guides and have... by token2 Path Finder in Getting Data In 05-16-2025 0 2	0	2
UF not in CMC Newly installed Universal forwarders on windows servers are forwarding logs to Splunk Cloud but newly installed forwa... by msatish Path Finder in Getting Data In 05-16-2025 0 4	0	4
Hybrid Login with SSO and Traditional Login in Splunk (SSO + Local Auth) Hi Splunkers!!,We have recently configured SSO in Splunk using Keycloak, and it's working fine — users are able to lo... by uagraw01 Motivator in Getting Data In 05-16-2025 0 2	0	2
Microsoft Teams Add-on for Splunk Azure Subscription creation/update failing occasionally Hi,we are currently experiencing reliability issues when using the Microsoft Teams Add-on for Splunk (https://splunk... by ahennewig_sva Observer in Getting Data In 05-16-2025 0 2	0	2
SourceTypes being changed by GUI Hi All,Help please.Can I get people to agree with me that the following is a bug/design flaw - as my splunk case is g... by KeithH Communicator in Getting Data In 05-16-2025 0 6	0	6
Ingest-time lookup Hello, has anyone worked with ingest-time lookup and familiar with it?https://docs.splunk.com/Documentation/Splunk/8.... by tah7004 Path Finder in Getting Data In 05-16-2025 0 8	0	8