Getting Data In

Community Activity

AWS cloudwatch logs invalid key issue I'm trying to configure a cloudwatch logs input but I continue to receive invalid key errors when restarting Splunk o... by pbarbuto Path Finder in Getting Data In 10-26-2021 0 0	0	0
Mitre Dashboard I have Mitre App for Splunk installed in my Enterprise security. I have the Mitre Dashboard up. I need help to creat... by ngwodo Path Finder in Getting Data In 10-26-2021 0 0	0	0
Invalid key in stanza Invalid key in stanza [workday://user_activity] in /opt/splunk/etc/apps/TA-workday/local/inputs.conf, line 2: include... by Okezie1 Explorer in Getting Data In 10-26-2021 0 3	0	3
Enable SMB server audit logs in Splunk from UF or inputs.conf Hi Team, Wanted to enable SMB server audit logs in Splunk from UF or inputs.conf etc, can anyone please help with the... by sharada Loves-to-Learn Everything in Getting Data In 10-26-2021 0 0	0	0
Extracting data from text file that is delimited by space I wanted to extract the data for every node. As you can see the pg-2 and ss7-2 are the nodes and below is the informa... by Azwaliyana Path Finder in Getting Data In 10-26-2021 0 1	0	1
No data can be seen from Forcepoint Firewall in Splunk Enterprise Hi all,We've configured a Forcepoint Next Generation Firewall (NGFW) to send data through it's Security Management Ce... by lzahariev Explorer in Getting Data In 10-26-2021 0 6	0	6
Can we use OR condition in monitoring stanza Good day Team,I have a application which contains 5 servers. Each server is having different path. But the end is to ... by Naga Engager in Getting Data In 10-26-2021 0 2	0	2
Missing F5 Logs Hello fellow Splunkers,It was brought to my attention from our F5 system manager that some logs from F5 are missing i... by IZ88 Path Finder in Getting Data In 10-26-2021 0 6	0	6
Splunk heavy forwarding, how to index logs on receiving end Hi,I have configured Splunk heavy forwarder in 2 machines. I want to send logs from one machine to another and expect... by balajivs New Member in Getting Data In 10-26-2021 0 4	0	4
Cisco Umbrella Add-On for Splunk Version6 support Hi , does anyone have any experience with Parsing Version 6 schema of Umbrella logsthe release notes from the addon h... by jonxilinx Path Finder in Getting Data In 10-26-2021 0 0	0	0
Help with Interview prep Describe what happens when an adhoc search is issued on a search head in a distributed environment?Does the search he... by alexlexxy Explorer in Getting Data In 10-25-2021 0 4	0	4
Re-index data How do I get the data re-indexed to same sourcetype which I deleted using the delete command.for eg. lets say ... by TheFlash Path Finder in Getting Data In 10-25-2021 0 4	0	4
McAfee Enterprise Log Manager (EML) data to Splunk Hello Splunk World, I'm working on importing raw logs from McAfee ELM to Splunk. The only option I've come across fro... by Munju1 Engager in Getting Data In 10-25-2021 0 0	0	0
AWS SQS Logs not ingested by Splunk Enterprise I've deployed an architecture with a centralized s3 bucket that forwards AWS logs to an SQS queue. In Splunk side, I... by sbmsplunk Observer in Getting Data In 10-25-2021 0 0	0	0
Doing Splunk Fundamental 2 Lab Exercises Please I need help with ingesting data to do the Splunk Fundamental 2 Lab Exercises. The problem is that I have all t... by ngwodo Path Finder in Getting Data In 10-25-2021 0 3	0	3
Windows logs are not ingesting into splunk Dears, We have the deployment server in DMZ zone and indexers are in DRN zone. So windows team is pushing the package... by kiranpanchavat1 Path Finder in Getting Data In 10-25-2021 0 3	0	3
FireEye HX integration Dears,Can we integrate the Fireeye HX with Splunk using GUI or not ? If not let me know the process for CLI. by kiranpanchavat1 Path Finder in Getting Data In 10-24-2021 0 6	0	6
How do you extract a timestamp from JSON logs that are being sent to an HTTP Event Collector? Hi, When sending logs to Splunk Cloud via HTTP Event Collector, Splunk was not able to extract the correct timestamp... by emillg New Member in Getting Data In 10-22-2021 0 10	0	10
Using text files as input as a single set of data Hi, I got production logs as txt files containing many Fields that are always in the format $_XXX: YYY with XXX being... by Linze99 Explorer in Getting Data In 10-22-2021 0 8	0	8
ui_inactivity_timeout - web.conf has anyone successfully implemented user session timeouts on their SHC? We are experiencing users keeping multiple d... by fisuser1 Contributor in Getting Data In 10-22-2021 3 1	3	1
Splunk add-on for Cisco Meraki getting data from only one network in an organization I was trying to onboard data from Cisco Meraki when I've noticed the following:The Splunk Add-on for Cisco Meraki is ... by addme New Member in Getting Data In 10-22-2021 0 0	0	0
Blank Values being filled with data Hi all,I am uploading a csv which has two columns, Status and Flag. I am having issues where the Flag field is being ... by vishalduttauk Communicator in Getting Data In 10-22-2021 0 4	0	4
forwarder disk space issue Hi All,i am using below query to get forwarder disk utilization .. but its not working ..index=os sourcetype=df host=... by Susha Engager in Getting Data In 10-21-2021 0 2	0	2
Finding the duration of time spent in two different states of the system Hi I am working in a system which looks for DFS (Dynamic Frequency Selection) channels. The search starts with the fo... by vbhadra Explorer in Getting Data In 10-21-2021 0 2	0	2
Juniper SRX 380 Hi all, asking for a friend.I have a Juniper SRX380 for my firewall, and I am trying to bring data into Splunk on-pre... by abeaulieu Splunk Employee in Getting Data In 10-20-2021 0 1	0	1