Getting Data In

Community Activity

Do we need to assign domain admin for a service account for Universal forwarder I am setting up universal forwarders to run using service account and in Splunk documentations https://docs.splunk.co... by aamer86 Path Finder in Getting Data In 10-22-2020 0 2	0	2
Need environment variable for index ? Hi,we have 180+ machines with different services, which send their data using a splunk forwarder to different indexes... by Silmarillion197 Explorer in Getting Data In 10-22-2020 0 2	0	2
WebSphere SystemOut.log import missing much of the file. Brand newbie here... After I finished the tutorial, I tried to import WebSphere Application Server files for the firs... by dr18 Explorer in Getting Data In 10-21-2020 0 2	0	2
Dublicated json fields on searchHead Hello everyone!I have clustered infrastructure (simplified)2 SH (cluster) + 2 Indexer (cluster) + Heavy Forwarder (na... by SPavel Loves-to-Learn in Getting Data In 10-21-2020 0 0	0	0
Multivalue Field doubt I have 2 columns in a table each of which have 1 multivalue field.ColumnA ColumnBabc abcdef ... by SoumyaSengupta9 Explorer in Getting Data In 10-21-2020 0 1	0	1
get_global_setting returns api_key as "undefined" I have made a Tech add on that polls an API. In order to perform requests against the API, an API key is required.I h... by KeaganJ Path Finder in Getting Data In 10-21-2020 0 0	0	0
Searching events after log Hello,I would like to create the alert that:someone login to system (event login = successful login) and I just want ... by JacobWrdz Explorer in Getting Data In 10-21-2020 0 0	0	0
How to chart counts of events as Y axis, time as X axis and legend as field values? Hi! I'm new to using splunk and I am currently trying to chart a series of events over a time period. I have managed ... by splunk_new1 Explorer in Getting Data In 10-21-2020 0 2	0	2
send data from jenkins to splunk Hello everyone, i am new to splunk and I am using plugin splunk for jenkins and trying to send data from jenkins to s... by ujk10 Loves-to-Learn Everything in Getting Data In 10-21-2020 0 0	0	0
How to group different ip in the input.conf and props.conf Hi All,here is the question. I have some logs form 4 ips and received them at udp 514, for example is 1.1.1.1, 2.2.2.... by kitkit321 Explorer in Getting Data In 10-20-2020 0 2	0	2
Regarding my Universal forwarder down intimation Dear Team,This is to inform you that i have around 50 universal forwarder installed in my splunk environment.How we c... by zahab20 Engager in Getting Data In 10-20-2020 1 3	1	3
Understanding the relationship between props.conf and transforms.con I am setting up a specific forwarder to monitor a log file that generates logs for multiple cases, but I only care ab... by ricotries Communicator in Getting Data In 10-20-2020 1 4	1	4
Events are incomplete - sometimes Hello Devs,unfortunately my splunk events getting cut sometimes and only the end part (varies from last 1k to 10k lin... by dimitriosDev New Member in Getting Data In 10-20-2020 0 0	0	0
Assistance in Nulling Events before Indexing I have the following props and confs which works fine and does what I need it to do. PROPS [mydata_logs] LINE_BREAKE... by willadams Contributor in Getting Data In 10-20-2020 0 0	0	0
how we can assign a default value for empty tag with KV_MODE=xml? Hi folks,Any idea how we can assign a default value for empty tag with KV_MODE=xml?The reason is, we have a xml segme... by imgarytan Path Finder in Getting Data In 10-19-2020 0 1	0	1
Splunk Dashboard to accept Input Data from the User and Save it in the Dashboard - For Each Row in Dashboard Example:Splunk Dashboard: Panel 1--->EMPID NAME TASK COMMENTS1 SANDEEP A Tas... by potnuru Path Finder in Getting Data In 10-19-2020 1 7	1	7
No previous events when UF are installed Hi Splunkers,When UFs are installed, I don't want them to send all the events which were generated prior to UF was in... by jonwick Path Finder in Getting Data In 10-19-2020 1 3	1	3
Assistance with Extraction (PROPS / TRANSFORMS) I have an annoying log that I am trying to extract data from and I am lost and don't know where to go from here. Wha... by willadams Contributor in Getting Data In 10-19-2020 0 7	0	7
How to extract the list elements and group them into a table Hi I was been trying hard to extract the following data into a table with the column names failedTestCases(failedScen... by akarunkumar321 Engager in Getting Data In 10-19-2020 0 1	0	1
Do I need Domain Account for UF when DC monitoring and Windows OS for DS? Hello Splunkers,Do I need domain account for UF to monitor Domain Controller ?I suppose, I need UF on domain account... by jonwick Path Finder in Getting Data In 10-18-2020 0 3	0	3
Not able to access Splunk Course Fundamentals 1 i am unable to do the Splunk Course Fundamentals 1. It is showing "Your access to what is machine data is available s... by Jayaranjitha New Member in Getting Data In 10-18-2020 0 0	0	0
How to add constant prefix to all indexes and forward it Hello everyoneI want to add a constant prefix to all my indexes and then forward themthis is my props.conf props.con... by mzn1979 Explorer in Getting Data In 10-18-2020 1 4	1	4
How to delete sourcetype or source ? Hello, I added a file csv in splunk but the name is not correct for sourcetype. And i want to restart. now : source="... by vita86 Explorer in Getting Data In 10-17-2020 0 5	0	5
Class question Run a search in the metrics index over the last 15 minutes. Use the stats command to find the middle number, the aver... by stromingj New Member in Getting Data In 10-17-2020 0 3	0	3
How can I get the time difference between two events with particular ID? I was trying to filter event ID in subsearch and then use it in the main search to find other events with related ID ... by dabroma5 Explorer in Getting Data In 10-16-2020 0 8	0	8