Getting Data In

Community Activity

alert How to write a search to find which user did a sudo to root on Linux servers? by Pradz18 Loves-to-Learn Everything in Getting Data In 06-17-2021 0 0	0	0
How can I onboard SNOW RITM variables data to splunk Requirement is to onboard SNOW RITM variables data to Splunk. Using table name SC_REQ_ITEM and SC_TASK, I can able to... by epari1437 Engager in Getting Data In 06-17-2021 0 1	0	1
how to configure Mcafee Epo to send data to Splunk How can i get data from Mcafee ePo directly to splunk ? i see that there is an Add on for MacAfee but that required s... by junier16 Explorer in Getting Data In 06-17-2021 0 5	0	5
Issue in getting data from universal forwarder Hi There,I have placed inputs.conf and outputs.conf on Splunk UF installed on application server to fetch the logs fr... by chchanda Loves-to-Learn in Getting Data In 06-17-2021 0 4	0	4
DBConnect - tail_rising_column_init_ckpt_value Hello,After configure DBConnect to get data from a SQL database, I found the following error after restart the splunk... by maaneeel Explorer in Getting Data In 06-17-2021 1 0	1	0
Newly created data input and index error I created a data input for a local file and a new index, the same way that I had done previously for a data input tha... by jbmitchell Loves-to-Learn Lots in Getting Data In 06-16-2021 0 2	0	2
detected_host, detected_timestamp, etc. with JSON file source If I upload a file containing JSON records or monitor such a file/scripted input, a field named host becomes "detecte... by yuanliu SplunkTrust in Getting Data In 06-16-2021 0 2	0	2
host name extraction / regex from syslog using Rsyslog or Splunk Hey all, I just wanted to get people's opinion on the best method for getting firewall data into Splunk. We have fire... by mlody11 Engager in Getting Data In 06-16-2021 0 3	0	3
Dynamic lookup table Hi,I have request to create dashboard with user information, but that user information is provided by AD team, So I n... by Sangu Explorer in Getting Data In 06-16-2021 0 1	0	1
What different colors for bar graph Hello All.I have a search: source="/var/log/squid/access.log" url NOT "esrs3-" status = \| chart Count by statusThi... by eholz1 Builder in Getting Data In 06-16-2021 0 0	0	0
Partial obfuscation in Splunk Cloud Hello experts,I'm trying to obfuscate the UserName and ComputerName from my events before indexation, while keeping t... by Flobzh Explorer in Getting Data In 06-16-2021 0 0	0	0
Why is Splunk AppInspect failing with error "FAILURE: A world-writable file was found" when requesting app certification? When I try to check an app with appinspector I get the following failure for each file: FAILURE: A world-writable fi... by DieterS Engager in Getting Data In 06-16-2021 2 7	2	7
Indexed time extraction for Pipe Delimited Hi guys, I have a monitored CSV file that is Pipe delimitedI was trying to extract the fields so that header1 will be... by renzgujian Loves-to-Learn Lots in Getting Data In 06-16-2021 0 2	0	2
Single search head and single indexer I have seen in other threads that this questions has been asked before but I can't seem to find an answer. I have a ... by timsheets13 Loves-to-Learn in Getting Data In 06-15-2021 0 1	0	1
Powershell Get-ADComputer not pulling in fields I've been attempting to pull data in with powershell and Get-ADComputer to pull in fields like OperatingSystem and si... by chirsf Explorer in Getting Data In 06-15-2021 0 0	0	0
The splunk OT add-on does not showing any data on the dashborads I have splunk OT add-on in my splunk enterprise instance. In my index i have the data of the assets, created a correl... by munna Explorer in Getting Data In 06-15-2021 0 0	0	0
REST API storage/collections/config return errors I have a hard time getting examples in https://dev.splunk.com/enterprise/docs/developapps/manageknowledge/kvstore/use... by yuanliu SplunkTrust in Getting Data In 06-15-2021 0 2	0	2
WIndows Active Directory sourcetypes Dear Splunkers, I have a question regarding AD data input. Can you please advise on what sourcetype and source of eve... by Gene Path Finder in Getting Data In 06-15-2021 0 2	0	2
Splunk Data cleanup Hi Team!I would like to clean all the old data from Splunk so that i can limit to 2 years only. Currently it is stori... by somramsam Engager in Getting Data In 06-15-2021 0 3	0	3
Filtering out the message and body fields from wineventlog Hi Team,We are already ingesting wineventlog in splunk. So we are currently working towards the license usage reducti... by anandhalagaras1 Contributor in Getting Data In 06-14-2021 0 8	0	8
Splunk Metrics Hi Team,I have a requirement to pull the Splunk Metrics in the form of a dashboard. i.e. For example each and every m... by anandhalagaras1 Contributor in Getting Data In 06-14-2021 0 1	0	1
Strftime and adding leading zeros to time difference Hi, I have a field called time_diff that I've eval'd from two other fields to calculate the difference in time betwee... by timm7474 Explorer in Getting Data In 06-14-2021 0 7	0	7
Read only the JSON section of each line in a monitored file I am working on seeing if there is a better way that I can consume the data I have from an Azure Blob storage.I am us... by jeffbat Path Finder in Getting Data In 06-14-2021 0 0	0	0
DHCP logs not appearing on splunk At the beginning of this month, the DHCP servers have stopped feeding logs into my splunk instance.Everyday at around... by fliwei Explorer in Getting Data In 06-14-2021 0 6	0	6
ERROR JsonLineBreaker causes I've run across two major causes of JsonLineBreaker errors.One cause is character set encoding. It's not enough to w... by pgriffith Loves-to-Learn in Getting Data In 06-11-2021 0 0	0	0