Getting Data In

Community Activity

	AWS Splunk server migration to another server in Azure Hi Splunk,I am using Splunk with the enterprise version, we have a plan to migrate the current Splunk server in AWS t... by itsaigon05 New Member in Getting Data In 03-16-2021 0 0	0	0
	Issue: 1 XML file is splitting into 2 event First Issue: I've been trying to ingest 1 XML file into 1 event only in Splunk. But Splunk always splitting it into 2... by mariannedave Explorer in Getting Data In 03-16-2021 0 11	0	11
	How to split a json message into multiple events? Hi Guys,could anyone help me to split the following json file in multiple events?I tried in different ways, adding KV... by mariobisio Explorer in Getting Data In 03-16-2021 0 6	0	6
	SPLUNK Infosec (or SecEssentials) + Monitoring AD : Is CIM compliant by default? Hi community.We are trying to integrate the new InfoSec app with the AD monitoring. For this, we have deployed a wind... by MLGSPLUNK Path Finder in Getting Data In 03-15-2021 0 0	0	0
	Connect to your Azure Storage account with the Splunk Add-on for Microsoft Cloud Services Hi ,I am trying to connect Azure Storage account with the Splunk Add-on for Microsoft Cloud Services following the be... by rahul2gupta Path Finder in Getting Data In 03-15-2021 0 2	0	2
	Transforms within cluster not working Hi,Within our splunk environment we have 1 search head, 3 search peers, 1 deployer/master/license and 500+ UF. The uf... by jorambokma Explorer in Getting Data In 03-15-2021 0 2	0	2
	create notable event for missing forwarders Hi, is there any solution to create a notable event for missing forwarders? Now missing forwarders generate an alert ... by jg91 Path Finder in Getting Data In 03-13-2021 0 2	0	2
	Need Help Routing Subset of Docker Container Logs to Different Index Hello Splunk Community, I could certainly use you help getting myself out of a rather large jam I'm in. I need guidan... by TheColorBlack Path Finder in Getting Data In 03-13-2021 0 1	0	1
	Wildcard to monitor in inputs.conf Hi,I have below log files under path /path/to/app/usera-x.loguserb-x.loguserc-x.loguserd-y.logusere-y.loguserf-z.logu... by SS1 Path Finder in Getting Data In 03-13-2021 0 5	0	5
	Splunk App for Windows Infrastructure default index issue I have the latest SA-LDAP, Splunk_TA_Windows and Windows Infra apps installed. I have sourcetype WinHostMon data com... by token2 Path Finder in Getting Data In 03-12-2021 0 3	0	3
	[WinError 10061] No connection could be made because the target machine actively refused it Hello! I am having trouble uploading any files to Splunk using Add Data. This is the whole error message I am getting... by althoffarick New Member in Getting Data In 03-12-2021 0 0	0	0
	Props.conf, transforms.conf and Index Time field extractions not working in production environment We are logging one application deployed in Kubernetes and ingesting its tomcat localhost access logs in Splunk via HE... by barora21 Engager in Getting Data In 03-12-2021 0 1	0	1
	Splunk Monitoring Hi Splunkers,I'm working on Splunk and ServiceNow integration. Where ServiceNow team wants pull a report from Splunk ... by revanthammineni Path Finder in Getting Data In 03-12-2021 0 1	0	1
	Logging of DNS Audit events Hey guys, i want to log dns audit events such as the deletion/creation of dns entries. I've installed Splunk app fo... by itinfrastructur New Member in Getting Data In 03-12-2021 0 2	0	2
	Renaming Fields in Data Good Morning,We are having a bit on an issue with our data "layout". In our wineventlogs we have a field in the XML c... by defikes Explorer in Getting Data In 03-12-2021 0 3	0	3
	Splunk not breaking events correctly with multiple double quotes for field (CSV) I'm having som issues with how Splunk is handling event breaking for CSV files.A sample of the CSV file in question:U... by mortf Explorer in Getting Data In 03-12-2021 0 1	0	1
	Daily License Report not Showing My Environment: 1 SH, 1DS (CM, LM), 2 INDX`s and 15GB/day License.The day before yesterday logs ingested to Splunk fr... by phanichintha Path Finder in Getting Data In 03-11-2021 0 4	0	4
	Stealthwatch data into Splunk Cloud Good Afternoon,We are attempting to get our Stealthwatch data into Splunk. We are in Cloud 8.1 one so the only Add-on... by defikes Explorer in Getting Data In 03-11-2021 0 0	0	0
	Log tag recolection Hi,I´m new with Splunk and i´m trying to do to enable a tag on splunk recolection to know from which heavy/indexer is... by TecDiver Loves-to-Learn Lots in Getting Data In 03-11-2021 0 2	0	2
	Uploading flat/sequential file I'm trying to upload an ascii file (created on a IBM mainframe) into splunk using the lookup - add new lookup table f... by petem3 New Member in Getting Data In 03-11-2021 0 3	0	3
	Splunk (8.1.2 and previous) not reading data from all stanzas Dear community,I have a massive issue with a (single hosted) Splunk installation reading files from a local drive/ UN... by madingdisk Explorer in Getting Data In 03-11-2021 0 0	0	0
	Persistent queue for windows input not working Hello,we have an issue with persistent queue not working correctly. As visible below we have enabled persistent Queue... by sethion Observer in Getting Data In 03-11-2021 0 0	0	0
	source name setup with wildcard Hi Everyone,Currently i am monitoring the *.log files under a path, i have not given a source name since we dont have... by SS1 Path Finder in Getting Data In 03-10-2021 0 5	0	5
	splunk rename source I have my source name as below, the 'user' field keeps on updatingE:\test\Apps\path\EventLogs\MemoCPU\user-MemoCPU.lo... by SS1 Path Finder in Getting Data In 03-10-2021 0 1	0	1
	Delay Ingestion at the Universal Forwarder Until Event Is Complete I have an interesting dilemma and I believe there is a solution, but I can use some advice on this one.We have a log ... by ArchieCrozier Path Finder in Getting Data In 03-10-2021 0 2	0	2