Getting Data In

Community Activity

how to reduce the index size of KV store and summary db how to reduce the index size of KV store and summary db on the server by syedabuthahir Explorer in Getting Data In 12-29-2020 0 2	0	2
What does pset and reuse mean in splunkd.logs Given this search for the TcpOutputProc index=_internal source=*splunkd.log component=TcpOutputProc \| fields _raw ... by dexterp Explorer in Getting Data In 12-29-2020 0 2	0	2
Vendor api token, but no add-on I have a vendor that will provide an api token so I can retrieve SIEM event data. There is no add-on available for th... by mikefg Communicator in Getting Data In 12-29-2020 0 1	0	1
Monitor File Activity on SMB Share I need to monitor all file reads, writes, deletes, etc. on a SMB share from a Windows server. In the past, I've just ... by ericl42 Path Finder in Getting Data In 12-29-2020 0 1	0	1
Where can i get some sample data to test Splunk ITSI Features? Hi I am trying to evaluate Splunk in context of all the features that it has to offer.... I downloaded the demo, but ... by RomeSplunk123 Explorer in Getting Data In 12-28-2020 0 6	0	6
How do I tell Splunk not to ignore first line in structured psv file? I have log files that append new data every five minutes starting with a timestamp, then dashes (-) then header, then... by Woody35 Observer in Getting Data In 12-28-2020 0 3	0	3
App Developers Gadgets Hi at all,this app is very useful for my needs, because I have to open or close panels in my dashboards, but I don't ... by gcusello SplunkTrust in Getting Data In 12-28-2020 0 0	0	0
Trouble authenticating ALL Active Directory users I'd like to open my Splunk system up to all of our AD users rather than mapping particular groups as we've in the pas... by dustinhartje Explorer in Getting Data In 12-28-2020 0 5	0	5
Unbound DNS Resolver Logs ```Dec 27 01:47:46 pvlpfSense01 unbound: [91480:1] info: resolving acceptor.mcafee-mvision-mobile[.]com. A INDec 27 0... by ArmbrusterC Explorer in Getting Data In 12-27-2020 0 2	0	2
Logs with XML data is being read as two separate events by Splunk Hi There Folks!Please refer screen shot of the original log file in a NotePad.http://prntscr.com/w82jd1Although its o... by venksel Explorer in Getting Data In 12-25-2020 0 1	0	1
License Capping We have a 16GB Indexing License for one applicatiom , which for the first time we have exceeded the limit. I would li... by abhijeet01 Path Finder in Getting Data In 12-24-2020 0 1	0	1
Is it possible to filter, route, and change the index of specific events? Hi All,Basically the data (WinEventLogs) flow is UF -> HF -> indexer Group 1/ Indexer Group 2.All the data will go to... by keithyap Path Finder in Getting Data In 12-23-2020 0 3	0	3
How to on-board comma separated csv data with pipes around each fields HiLooking for the advice how to on-board the csv file with comma separated values but each field has pipes around it ... by mlevsh Builder in Getting Data In 12-23-2020 0 1	0	1
index size in my stand alone environment indexes.conf:maxDataSize=100mbmaxTotalDataSizemb=200000but in ui one of index current s... by dall Path Finder in Getting Data In 12-23-2020 1 5	1	5
Collect SCOM Custom Performance Data with Splunk We have integrated SCOM with Splunk using Splunk Add-on for MS SCOM [HF]. We are getting ALL Perfmon Data in Splunk f... by mnachiappan80 Observer in Getting Data In 12-22-2020 0 0	0	0
App not creating sourcetypes Hi folks,I’m having an issue getting Juniper logs to show the correct sourcetype. Right now they simply all show up a... by jravida Communicator in Getting Data In 12-22-2020 0 1	0	1
Datamodels with Smartstore I have an environment where I'm using a datamodel with the _internal index. My datamodel_summary is created in the pa... by 7aurelius Loves-to-Learn in Getting Data In 12-22-2020 0 2	0	2
Syslog Output missing header Hello AllI found a similar question but did not see an answer.https://community.splunk.com/t5/Getting-Data-In/No-time... by edwardrose Contributor in Getting Data In 12-22-2020 0 0	0	0
Non-admin user can't see all the owners in the filter dropdown Hi, We have Splunk Enterprise. and recently migrated from LDAP TO SAML. And we started observing that non-admin user... by amritkumar New Member in Getting Data In 12-22-2020 0 1	0	1
Can non-admin role manage the search jobs run by all users? A user with non-admin role can only see own search jobs in "Jobs" page. in a Splunk document (https://docs.splunk.com... by yangtse Explorer in Getting Data In 12-22-2020 0 0	0	0
Not able to send logs to my syslog-ng server Hi eveyone, I'm try to send pihole.log to my syslog-ng server through an splunk universal forwarder. Details about my... by g_paternicola Path Finder in Getting Data In 12-22-2020 0 7	0	7
Change sourcetype for data coming from UF Hello Splunkers,I need help with change sourcetype in logs.There is UF installed on Win server. I would like to colle... by lukasmecir Path Finder in Getting Data In 12-22-2020 0 6	0	6
What all the way to integrate splunk with scom hi all i wanted to integrate scom with splunk please suggest best practices and best options by dsingh21 Loves-to-Learn in Getting Data In 12-19-2020 0 1	0	1
Receiving multiple json events as one from third party application Hi everyone,I`m receiving multiple JSON events as one event from third party application as showned below. {"metric":... by aitymm Loves-to-Learn in Getting Data In 12-19-2020 0 0	0	0
just started learning splunk How do I resolve this error -> happens with both linux and macThe TCP output processor has paused the data flow. Forw... by deepmis New Member in Getting Data In 12-19-2020 0 4	0	4