Getting Data In

Community Activity

	How apply SEDCMD after TRANSFORMS? Hello All, My issue is:We are receiving files from Source1, where are more types of logs. We want to split them and s... by Jakub Explorer in Getting Data In 09-22-2021 0 1	0	1
	Where do I change the maximum Message body length? I'm trying to get a large text file ingested using the HEC. In my searches for the data, I see events that say "Mess... by gregbo Communicator in Getting Data In 09-22-2021 0 3	0	3
	Props.conf wild card help Hi,I have the below source, values in Red will keep changingsource="/Application/logs/b80be40606aa7860f7de0c7ffa6b9d7... by SS1 Path Finder in Getting Data In 09-22-2021 0 4	0	4
	Splunk Add-On for Linux Compatability I am using the Splunk Add-On for Linux on my deployment server (which is a windows server) and trying to use this to ... by pc1 Path Finder in Getting Data In 09-22-2021 0 6	0	6
	/bin/false as loginshell for splunkforwarder Hi, is it possible to use /bin/false as a loginshell for the user running splunkforwarder? The splunkforwarder pro... by HansWurscht Path Finder in Getting Data In 09-22-2021 0 5	0	5
	Monitoring Netbackup using Splunk What integrations are available (TA, REST, Syslog etc.) to monitor netbackup from Splunk by prammod123 Explorer in Getting Data In 09-21-2021 0 1	0	1
	WMI - non-standard event log I managed to set up my WMI event-polling setup and it mostly works.Mostly, because it doesn't pull events from non-st... by PickleRick SplunkTrust in Getting Data In 09-21-2021 0 1	0	1
	How to connect Oracle Access Manager to Splunk? Hello everybody,i need to connect an instance of Oracle OAM to Splunk.Do you have any suggestion on how to achieve th... by LM_ACN Engager in Getting Data In 09-21-2021 0 0	0	0
	Windows server 2012 registry error display in Dashboard Hello everyone,How to get/tag the registry services from windows server and display in dashboard showcasing as faulty... by subhanatmd New Member in Getting Data In 09-21-2021 0 0	0	0
	How to exclude certain logs from indexing is there a way to exclude all logs being indexed for a certain field for eg : sourcetype=azs container_name=moss-log... by vishetty Observer in Getting Data In 09-21-2021 0 1	0	1
	WMI input error Ehhh, I'm trying to set up polling for remote events using WMI (yes, I know it's easier to install UF on the destinat... by PickleRick SplunkTrust in Getting Data In 09-20-2021 0 1	0	1
	Ingestion of CSV files via monitoring stanza Good day. I have a CSV File like this. I wanted to do this ingestion via monitoring in inputs. And we should not use ... by Naga Engager in Getting Data In 09-20-2021 0 0	0	0
	Extracting JSON keys as values Hi all.Background is I have recently acquired a JSON feed via Kafka but the schema was developed with other uses in m... by Urbanpope Explorer in Getting Data In 09-20-2021 0 6	0	6
	Time Conversion of Cisco FTD Logs I have several Cisco FTD devices (managed by Cisco FMC) that are sending syslog messages to splunk. Here is the forma... by teco_akelly Engager in Getting Data In 09-19-2021 0 1	0	1
	F5 BIG-IP linebreaking Hi Splunkers!I have a problem with line breaking in Splunk add-on F5-bigip. I've tried some regex to break the line c... by m_zandinia Path Finder in Getting Data In 09-18-2021 0 2	0	2
	Splunk Log4J2 Appender in Spring Boot with Maven I have a simple Maven configuration where I know the following is on the classpath (I can verify it at runtime before... by ssdarkside2 Explorer in Getting Data In 09-17-2021 0 0	0	0
	Ingesting XML and Classic WinEventLogs issue (renderXml=false) I've recently updated the Splunk_TA_windows from version 4.1.8 to version 8.12. As I went through the documentation I... by Matias Engager in Getting Data In 09-17-2021 0 1	0	1
	How to index Kubernetes STDOUT data in Splunk? Need your help, Can you please tell us, how to receive Kubernetes STDOUT data in Splunk Enterprise? Kubernetes is ru... by dhavamanis Builder in Getting Data In 09-17-2021 0 8	0	8
	Salesforce AsyncApexJob only ingests once I feel like this is a known issue & I feel like it's been around for a while, reaching out to see if anyone has worke... by arist0telis Explorer in Getting Data In 09-16-2021 0 0	0	0
	Syslog-NG: Two Destinations but different syslog messages I am trying to control ingest rate into Splunk Cloud. I have some firewalls that are very chatty. The firewalls thems... by L1nklight Explorer in Getting Data In 09-16-2021 0 1	0	1
	malformedEventIndex, how to troubleshoot and fix logs ending up here Hello all, I created a malformedEventIndex ( malformedevent), per inputs.conf. I see 400 million+/day from thousand... by kmfpo Explorer in Getting Data In 09-16-2021 0 3	0	3
	How to monitor a script which never stop ? Hello,I have a script which always up and must never stopped. And I want to know how to deal with it in the inputs.co... by mah Builder in Getting Data In 09-16-2021 0 0	0	0
	Difference between AD logs from M365 add-on app and Azure add-on app Hey all,Is it possible for an overlap of Azure AD sign-ins? I don't want to have duplicate logs and wasting ingestion... by oliverb_pickles Loves-to-Learn in Getting Data In 09-16-2021 0 0	0	0
	Permissions for Linux forwarder on .gz log files Hi everyone,I want to monitor files on a Linux server. Every hours (at minute 59), a file DATE.log is compressed into... by apache_strike Engager in Getting Data In 09-16-2021 0 0	0	0
	Why is stream:http not showing I'm very new too splunk and using the botsv1-attack-only file to begin learning, please be gentle. When I do an ini... by mchlbooth New Member in Getting Data In 09-15-2021 0 1	0	1