Getting Data In

Community Activity

	splunk rename source I have my source name as below, the 'user' field keeps on updatingE:\test\Apps\path\EventLogs\MemoCPU\user-MemoCPU.lo... by SS1 Path Finder in Getting Data In 03-10-2021 0 1	0	1
	Delay Ingestion at the Universal Forwarder Until Event Is Complete I have an interesting dilemma and I believe there is a solution, but I can use some advice on this one.We have a log ... by ArchieCrozier Path Finder in Getting Data In 03-10-2021 0 2	0	2
	How to ingest logs from a single file and split them into 2 source types or indexes? I've been trying to ingest logs from a single log file into 2 source types. For example, looking at the 'messages' fi... by daniel_augustyn Contributor in Getting Data In 03-10-2021 0 2	0	2
	Cost for Exporting CloudWatch Logs to Splunk I'm trying to figure out some rough costs for my setup before moving forward. I'd like to export logs from CloudWatc... by 09jvilla Engager in Getting Data In 03-10-2021 0 2	0	2
	Splunk Integration App For ServiceNow Hi SplunkersI would like to know if anyone has faced the issue of multiple incidents getting created in ServiceNow fo... by akriti Explorer in Getting Data In 03-10-2021 0 0	0	0
	MSSQL TA and putting it's data into a metrics index Hi,I'd like to store the data collected by the "Splunk Add-on for Microsoft SQL Server" in a metrics index. Initially... by eddieddieddie Path Finder in Getting Data In 03-10-2021 0 2	0	2
	Reset Splunk Data Hey guys,Let's say I have an index called test. I am only ingesting EVTX by modifying the inputs.conf [monitor://D:\... by singhvikas Explorer in Getting Data In 03-10-2021 0 3	0	3
	How to split access.log data Hello Splunkers,I've got a problem with data splitting. I would like to split data into separate lines.Please take a ... by slipinski Path Finder in Getting Data In 03-09-2021 0 3	0	3
	Field parsing from Json I have below json format data in Splunk index we know splunk support json it is already extracted fieldslike event_si... by rahulg Explorer in Getting Data In 03-09-2021 0 0	0	0
	GCS input with Google Cloud App Hey there!We're using Google Cloud App to inject logs sent to GCS by Stackdriver.Stackdriver produces logs in GCS in ... by devopsbrightins Engager in Getting Data In 03-09-2021 0 0	0	0
	to collect Swap memory used/available/total from linux server splunk ta_unix app only collects and stores swap memory used percent metrics and i want to index other metrics like ... by DataOrg Builder in Getting Data In 03-09-2021 0 0	0	0
	OKTA event log/per user by day for ingestion baseline Hello, OKTA Add-on User,I was wondering if you have event size per user per day on the OKTA log, user, group, app. I... by youngsuh Contributor in Getting Data In 03-08-2021 0 0	0	0
	Why am I getting an SSL Cert Verify Failed Error Setting Up AWS Inputs HelloI keep getting SSLError: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed (_ssl.c:742)when trying to a... by tkw03 Communicator in Getting Data In 03-08-2021 0 1	0	1
	Push notifications on policy violations and events from AppDynamics to Splunk, with Splunk HEC? We are interested in a very targeted integration between App Dynamics and Splunk, namely the ability to push and catc... by pretzel2 Path Finder in Getting Data In 03-08-2021 0 0	0	0
	Retrieve the windows owner of a monitored file. (To create a field or rename the source) Hello,we monitor files generated by processes launched by several users on the same server. There is not in the name ... by bvivi57 Observer in Getting Data In 03-08-2021 0 1	0	1
	How to create Alerts for: Data Ingestion exceeding my licensed amount? Disk sizes are exceeding size on indexers? How to create Alerts for: Data Ingestion exceeding my licensed amount? Disk sizes are exceeding size on indexers?I ad... by SamHTexas Builder in Getting Data In 03-07-2021 0 1	0	1
	Remove the field from a JSON ingested by Splunk When forwarding alerts to Splunk via SQS, it automatically pushes the entire JSON document into one field, called "Bo... by kgz25 New Member in Getting Data In 03-06-2021 0 11	0	11
	With 8.1.2 or later should we still use an HEC tier on HWFs? I read that in 8.1.2 it's less painful to update HEC configs, no longer requiring a restart for CRUD operations. Shou... by twinspop Influencer in Getting Data In 03-05-2021 0 1	0	1
	Is there a Splunk Universal Forwarder for Linux i686 I'm trying to install a universal forwarder on one of my systems. I originally tried with the main Linux package in t... by ekenne06 Path Finder in Getting Data In 03-05-2021 0 1	0	1
	Index Field Transform not Catching Every Event I'm running a simple transform to change the index from "tenable" to "tenable-dc" for one of my sourcetypes.Props.con... by aaron_gibby Engager in Getting Data In 03-05-2021 0 0	0	0
	SPLUNKFORWARDER error I am getting the below error,looking the splunkd.log file.DC:DeploymentClient - channel=tenantService/handshake Will ... by rballan2 Loves-to-Learn Lots in Getting Data In 03-05-2021 0 4	0	4
	splunk-connect-for-kubernetes breaking on every newline (\n) ? Hello, Posting here checks off a huge bucket list for me!I am hoping what I am sharing is a known, and has a known so... by trsabbot New Member in Getting Data In 03-05-2021 0 0	0	0
	Stanza for to ingest logs from specific date Hello Team,I want the stanza to ingest logs from a specific date in Linux or Window environment.Currently am using wi... by phanichintha Path Finder in Getting Data In 03-05-2021 0 4	0	4
	Need an idea how to reduce Symantec Web Security Services Data Hello,I am monitoring my Symantec Web Security Services data via the corresponding app. My daily ingest is 7287.00 M... by jbender72 Path Finder in Getting Data In 03-05-2021 0 0	0	0
	Why isn't my TIME_FORMAT working for this syslog data? I just configured a new device to send data to a syslog server (w/universal forwarder), but when it shows up in Splun... by flakshack Path Finder in Getting Data In 03-05-2021 0 2	0	2