Getting Data In

Community Activity

How to set timing/interval when pulling event in WinEventLog using universal forwarder? We install Universal forwarder in Windows Server for us to pull data from [WinEventLog://Microsoft-Windows-TaskSchedu... by vin_ven27 Explorer in Getting Data In 10-14-2024 0 11	0	11
Getting error " Failed to acquire /run/systemd/journal/syslog socket, disabling systemd-syslog source" Trying to use syslog-ng for latest Splunk enterprise. I am getting error " Failed to acquire /run/systemd/journal/sy... by mk_goog_3898 New Member in Getting Data In 10-11-2024 0 1	0	1
Removing uninstalled UF hosts Hello, we are on Splunk 9.3 on prem. I am unable to remove a server from the Splunk forwarder management list, after ... by timtekk Explorer in Getting Data In 10-11-2024 0 6	0	6
Splunk Otel Multiline Configs I'm using the splunk-otel-collector, and attempting to get multi-line java exceptions into a standardly formatted eve... by dgill Loves-to-Learn in Getting Data In 10-11-2024 0 1	0	1
Prefential Load Balancing from Universal Forwarders to HF/EPs We are looking to deploy Edge Processors (EP) in a high availability configuration - with 2 EP systems per site and m... by jatkb Engager in Getting Data In 10-11-2024 0 2	0	2
Splunk for Cisco Identity Services (ISE) and IPv6 Does Splunk for Cisco Identity Services (ISE) support data containing IPv6 addresses? by kevink707 New Member in Getting Data In 10-10-2024 0 0	0	0
How to update outputs.conf on univeral forwarders from Deployment Server I would like to update my universal forwarders to send data to 2 separate endpoints for 2 separate splunk environment... by FPERVIL Explorer in Getting Data In 10-10-2024 0 1	0	1
sc4s failed unauthorized access Hi Everyone,I am not Splunk engineer but I have task to do. sc4s.service is failed. Can't get the logs. It was workin... by mayvisible Loves-to-Learn Lots in Getting Data In 10-09-2024 0 7	0	7
Extract parent folder and sub folder path from windows and nix format Need some assistance with creating a query where I am trying to capture the parent folder and the 1st child folder re... by ramuzzini Path Finder in Getting Data In 10-09-2024 0 4	0	4
Time extraction using props.conf We have some events coming in to Splunk that show as following: time="09/10/2024 11:41:15" URL="[Redacted String]" Na... by Glom New Member in Getting Data In 10-09-2024 0 3	0	3
Parsing TSV with variable header names Hi, I've an eventhub that receives data from multiple application, with different number and values of columns. The e... by kristensens Explorer in Getting Data In 10-09-2024 0 2	0	2
SNMPv2 WMI Input Error Splunk 8.2.5/Windows 2019 Hello! Wanted to ask if anyone has experience with receiving SNMPv2 trap alerts in Splunk 8.2.5 (Win 2019)? Backgro... by galaxis Observer in Getting Data In 10-09-2024 0 0	0	0
disable learned sourcetype I am using Splunk universal forwarder 8.1.1 on a linux server configured as a log aggregator. I have 7 well defined ... by ray88 New Member in Getting Data In 10-09-2024 0 2	0	2
Capturing Metrics over TCP using JSON Hi, We are trying to get metrics into Splunk using TCP, so far we have tried the following: inputs.conf[tcp://44444]c... by dewitp New Member in Getting Data In 10-08-2024 0 1	0	1
Splunk Connect 4 Syslog (SC4S) with HEC in a Clustered Environment Hello,I'm figuring out the best way to address the above situation. We do have a huge multisite cluster with 10 index... by avoelk Communicator in Getting Data In 10-08-2024 0 3	0	3
How to properly split fields from syslog events that were split to different sourcetypes? This is a followup question to the solution on this thread:https://community.splunk.com/t5/Getting-Data-In/create-mul... by StephenD1 Path Finder in Getting Data In 10-08-2024 0 3	0	3
create multiple sourcetypes from single syslog source Hi I'm looking to create events for syslog data from a wireless controller - and the syslog data also contains data f... by Esky73 Builder in Getting Data In 10-08-2024 0 6	0	6
Cisco Security Cloud Hi guys,Is there any documentation available out there to setup the Cisco Security Cloud app?Specific requirements, "... by FQzy Explorer in Getting Data In 10-07-2024 1 6	1	6
Time based retention time, without a thawed path I'm trying to configure the indexes.conf in such a way that its data retention is exactly 180 days and then does NOT ... by avoelk Communicator in Getting Data In 10-07-2024 0 5	0	5
Why does my Splunk universal forwarder crashe : Crashing thread: parsing I have splunk universal forwarder version-6.5.2 after few days it crashes and gives error as- Received fatal signal 6... by ips_mandar Builder in Getting Data In 10-04-2024 0 7	0	7
UNC Path to Network Print Server Trying to monitor a separate print server folder outside where Splunk is hosted with print logs that has a UNC path. ... by ramuzzini Path Finder in Getting Data In 10-04-2024 0 1	0	1
ingest json logs - no extractions First time ingesting JSON logs, so need assistance on figuring out why my JSON log ingestion is not auto extracting.E... by Darthsplunker Path Finder in Getting Data In 10-03-2024 0 1	0	1
Enable MySQL Community 8.0.37 audit logging in a Windows environment Our MySQL server was upgraded from 5.7 to 8.0.37, and the MariaDB plugin no longer supports exporting audit log files... by Alan_Chan Explorer in Getting Data In 10-02-2024 0 1	0	1
Splunk UF Windows Security Event logs just seem to randomly stop sending Experiencing an issue on a few random servers, some Domain Controllers and some Member Servers. Windows Security Even... by PeterBoard Path Finder in Getting Data In 10-02-2024 0 7	0	7
SSL module is not available? Hi, When trying to call some rest API's in a custom script using the request package, if the URL is https Splunk thro... by dwoodfordgrid Engager in Getting Data In 10-01-2024 1 6	1	6