Getting Data In

Community Activity

How can I merge events from powershell input? I want to get events from below powershell input. inputs.conf [powershell://power_shell_sapmle] script = . "$Splu... by yutaka1005 Builder in Getting Data In 06-22-2021 0 15	0	15
Encrypt aws_key, aws_secret in DynamoDB modular input add-on. Hi Folks, Can anyone help me with encrypting/Masking the aws_key and aws_secret values for multiple inputs stored in ... by inayath_khanin1 Explorer in Getting Data In 06-22-2021 0 0	0	0
How to get the duration between different events of the same asset? Hi, I would like to find out how to calculate the time difference between different events of the same asset ID (grou... by Randall2020 Engager in Getting Data In 06-21-2021 0 2	0	2
Is there a way to get a list of Splunk Apps that are installed on a deployment client running a universal forwarder? Through Forwarder Management, you can see Clients and list how many apps are installed on that client. What I want t... by kennybirdwell Explorer in Getting Data In 06-21-2021 1 13	1	13
How to route errors of log monitoring to null queue Hi everybody!I currently monitor IIS web server logs from two different locations. the locations are D:\IISLOGS and E... by mzn1979 Explorer in Getting Data In 06-21-2021 0 1	0	1
DB Connect - Oracle DB - SQL Java Runtime Error when creating input Hi all, I have established a connection to a Oracle DB successfully using DBX.Now I want to create the input using a ... by ojay Path Finder in Getting Data In 06-21-2021 0 0	0	0
How tio construct a hec uri ? Hello I'm relatively new to splunk and I'm trying to stream data from Kafka to Splunk using kafka connect for splunk.... by ni4ni New Member in Getting Data In 06-21-2021 0 2	0	2
Setting up self signed ssl communication splunk clsuster Hi AllI have 4 indexer in cluster and 3 search heads in cluster, One master and 1 Deployer . Can some one help me to ... by btshivanand Path Finder in Getting Data In 06-20-2021 0 0	0	0
Which timestamp does indexer use as _time? When multiple timestamps exist in raw events, which one does the indexer pick as _time? In the majority of condition... by yuanliu SplunkTrust in Getting Data In 06-20-2021 0 1	0	1
How to persuade file monitor to use a data field as host? (I previously asked this in a more vague CSV context.) I am using file monitor to ingest data from an API that retur... by yuanliu SplunkTrust in Getting Data In 06-20-2021 0 0	0	0
Splunk Host Reporting I am looking for a Query where we can set up monitoring and alert which can tell us how many Host are Reporting and ... by ssahil New Member in Getting Data In 06-19-2021 0 4	0	4
Concat time field to include start to end of hour Hello; I've tried a few ways, but have been unsuccessful in creating a _time field to include the datetime, and the e... by benj851 Explorer in Getting Data In 06-18-2021 0 2	0	2
CSV timestamp based on 2 columns Hi folks,I need an help, I have to index a csv file, currently this csv file have a column for a date and another one... by aasabatini Motivator in Getting Data In 06-18-2021 0 2	0	2
Can I use REST API, HTTP events, or raw TCP/UDP with scripted input? Build scripted inputs, Get data from APIs and other remote data interfaces through scripted inputs, etc., point to ei... by yuanliu SplunkTrust in Getting Data In 06-17-2021 0 6	0	6
Windows Universal Forwarders no longer performing AD GUID/SID-to-value lookups after upgrade to 8.1 Greetings!We recently upgraded our UFs throughout the environment to 8.1.0, and since the upgrade, none of the Window... by abaumbusch Explorer in Getting Data In 06-17-2021 0 7	0	7
alert How to write a search to find which user did a sudo to root on Linux servers? by Pradz18 Loves-to-Learn Everything in Getting Data In 06-17-2021 0 0	0	0
How can I onboard SNOW RITM variables data to splunk Requirement is to onboard SNOW RITM variables data to Splunk. Using table name SC_REQ_ITEM and SC_TASK, I can able to... by epari1437 Engager in Getting Data In 06-17-2021 0 1	0	1
how to configure Mcafee Epo to send data to Splunk How can i get data from Mcafee ePo directly to splunk ? i see that there is an Add on for MacAfee but that required s... by junier16 Explorer in Getting Data In 06-17-2021 0 5	0	5
Issue in getting data from universal forwarder Hi There,I have placed inputs.conf and outputs.conf on Splunk UF installed on application server to fetch the logs fr... by chchanda Loves-to-Learn in Getting Data In 06-17-2021 0 4	0	4
DBConnect - tail_rising_column_init_ckpt_value Hello,After configure DBConnect to get data from a SQL database, I found the following error after restart the splunk... by maaneeel Explorer in Getting Data In 06-17-2021 1 0	1	0
Newly created data input and index error I created a data input for a local file and a new index, the same way that I had done previously for a data input tha... by jbmitchell Loves-to-Learn Lots in Getting Data In 06-16-2021 0 2	0	2
detected_host, detected_timestamp, etc. with JSON file source If I upload a file containing JSON records or monitor such a file/scripted input, a field named host becomes "detecte... by yuanliu SplunkTrust in Getting Data In 06-16-2021 0 2	0	2
host name extraction / regex from syslog using Rsyslog or Splunk Hey all, I just wanted to get people's opinion on the best method for getting firewall data into Splunk. We have fire... by mlody11 Engager in Getting Data In 06-16-2021 0 3	0	3
Dynamic lookup table Hi,I have request to create dashboard with user information, but that user information is provided by AD team, So I n... by Sangu Explorer in Getting Data In 06-16-2021 0 1	0	1
What different colors for bar graph Hello All.I have a search: source="/var/log/squid/access.log" url NOT "esrs3-" status = \| chart Count by statusThi... by eholz1 Builder in Getting Data In 06-16-2021 0 0	0	0