Getting Data In

Community Activity

index time extraction for json logs Hi Splunkers ,I'm collecting logs from S3 through heavy forwarder which are in json format . After indexing i see the... by spl_unker Explorer in Getting Data In 03-16-2021 0 14	0	14
SmartStore on Azure? Has anyone managed to get SmartStore working with an Azure Storage Account? I know the requirement is S3 compatibili... by port7 Explorer in Getting Data In 03-16-2021 6 5	6	5
OKTA TLS requires TLS/cipher “BLUF: Looks like a TLS/cipher problem in addition to ca_bundel. I was able to connect without errors after specifyin... by youngsuh Contributor in Getting Data In 03-16-2021 0 4	0	4
Do not index file based on content Greetings All,I'm indexing a bunch of metrics files written every 10 minutes. Just after midnight I get a file contai... by Random_Walk Path Finder in Getting Data In 03-16-2021 0 3	0	3
AWS Splunk server migration to another server in Azure Hi Splunk,I am using Splunk with the enterprise version, we have a plan to migrate the current Splunk server in AWS t... by itsaigon05 New Member in Getting Data In 03-16-2021 0 0	0	0
Issue: 1 XML file is splitting into 2 event First Issue: I've been trying to ingest 1 XML file into 1 event only in Splunk. But Splunk always splitting it into 2... by mariannedave Explorer in Getting Data In 03-16-2021 0 11	0	11
How to split a json message into multiple events? Hi Guys,could anyone help me to split the following json file in multiple events?I tried in different ways, adding KV... by mariobisio Explorer in Getting Data In 03-16-2021 0 6	0	6
SPLUNK Infosec (or SecEssentials) + Monitoring AD : Is CIM compliant by default? Hi community.We are trying to integrate the new InfoSec app with the AD monitoring. For this, we have deployed a wind... by MLGSPLUNK Path Finder in Getting Data In 03-15-2021 0 0	0	0
Connect to your Azure Storage account with the Splunk Add-on for Microsoft Cloud Services Hi ,I am trying to connect Azure Storage account with the Splunk Add-on for Microsoft Cloud Services following the be... by rahul2gupta Path Finder in Getting Data In 03-15-2021 0 2	0	2
Transforms within cluster not working Hi,Within our splunk environment we have 1 search head, 3 search peers, 1 deployer/master/license and 500+ UF. The uf... by jorambokma Explorer in Getting Data In 03-15-2021 0 2	0	2
create notable event for missing forwarders Hi, is there any solution to create a notable event for missing forwarders? Now missing forwarders generate an alert ... by jg91 Path Finder in Getting Data In 03-13-2021 0 2	0	2
Need Help Routing Subset of Docker Container Logs to Different Index Hello Splunk Community, I could certainly use you help getting myself out of a rather large jam I'm in. I need guidan... by TheColorBlack Path Finder in Getting Data In 03-13-2021 0 1	0	1
Wildcard to monitor in inputs.conf Hi,I have below log files under path /path/to/app/usera-x.loguserb-x.loguserc-x.loguserd-y.logusere-y.loguserf-z.logu... by SS1 Path Finder in Getting Data In 03-13-2021 0 5	0	5
Splunk App for Windows Infrastructure default index issue I have the latest SA-LDAP, Splunk_TA_Windows and Windows Infra apps installed. I have sourcetype WinHostMon data com... by token2 Path Finder in Getting Data In 03-12-2021 0 3	0	3
[WinError 10061] No connection could be made because the target machine actively refused it Hello! I am having trouble uploading any files to Splunk using Add Data. This is the whole error message I am getting... by althoffarick New Member in Getting Data In 03-12-2021 0 0	0	0
Props.conf, transforms.conf and Index Time field extractions not working in production environment We are logging one application deployed in Kubernetes and ingesting its tomcat localhost access logs in Splunk via HE... by barora21 Engager in Getting Data In 03-12-2021 0 1	0	1
Splunk Monitoring Hi Splunkers,I'm working on Splunk and ServiceNow integration. Where ServiceNow team wants pull a report from Splunk ... by revanthammineni Path Finder in Getting Data In 03-12-2021 0 1	0	1
Logging of DNS Audit events Hey guys, i want to log dns audit events such as the deletion/creation of dns entries. I've installed Splunk app fo... by itinfrastructur New Member in Getting Data In 03-12-2021 0 2	0	2
Renaming Fields in Data Good Morning,We are having a bit on an issue with our data "layout". In our wineventlogs we have a field in the XML c... by defikes Explorer in Getting Data In 03-12-2021 0 3	0	3
Splunk not breaking events correctly with multiple double quotes for field (CSV) I'm having som issues with how Splunk is handling event breaking for CSV files.A sample of the CSV file in question:U... by mortf Explorer in Getting Data In 03-12-2021 0 1	0	1
Daily License Report not Showing My Environment: 1 SH, 1DS (CM, LM), 2 INDX`s and 15GB/day License.The day before yesterday logs ingested to Splunk fr... by phanichintha Path Finder in Getting Data In 03-11-2021 0 4	0	4
Stealthwatch data into Splunk Cloud Good Afternoon,We are attempting to get our Stealthwatch data into Splunk. We are in Cloud 8.1 one so the only Add-on... by defikes Explorer in Getting Data In 03-11-2021 0 0	0	0
Log tag recolection Hi,I´m new with Splunk and i´m trying to do to enable a tag on splunk recolection to know from which heavy/indexer is... by TecDiver Loves-to-Learn Lots in Getting Data In 03-11-2021 0 2	0	2
Uploading flat/sequential file I'm trying to upload an ascii file (created on a IBM mainframe) into splunk using the lookup - add new lookup table f... by petem3 New Member in Getting Data In 03-11-2021 0 3	0	3
Splunk (8.1.2 and previous) not reading data from all stanzas Dear community,I have a massive issue with a (single hosted) Splunk installation reading files from a local drive/ UN... by madingdisk Explorer in Getting Data In 03-11-2021 0 0	0	0