Getting Data In

Community Activity

How Do I Remove Device From Splunk Server Class? Hello everyone. I am managing Windows and Mac devices via the Splunk DMC. Because of an error I made in the Splunk Se... by nmensah Explorer in Getting Data In 05-22-2018 0 4	0	4
Transform to nullQueue depends on search? Hello, I've been spending the last month experimenting with Splunk. Lately, i've tried to reroute a specific event t... by Burritobizon Engager in Getting Data In 05-22-2018 0 3	0	3
Need some more clarification on _meta value while using. Hi Folks, we have ingested the logs from microsoft azure using microsoft cloud services app on HF and we added some ... by lksridhar Explorer in Getting Data In 05-22-2018 0 5	0	5
How to get total comma separated values in splunk? Hi all, I am getting event like this Im trying to get total values with the comma separated but I am not getting t... by ajayabburi508 Path Finder in Getting Data In 05-22-2018 0 4	0	4
How can I only show rows from next 6 months based on the datestamp? I am trying to only show records that have "md_createdAt" fields that occur in the next 6 months, looking forward fro... by rkassabov Path Finder in Getting Data In 05-21-2018 0 5	0	5
Updated : JSON event break for multiple source type and single event in multiple lines. Hi, I am uploading json file having 2 different source type and single event is split multiple lines. I am very clo... by AKG1_old1 Builder in Getting Data In 05-21-2018 0 2	0	2
Configuring Splunk for Multiple Indexer Partitions I am not sure how to configure the indexes.conf AND the splunk-launch.conf. I understand multiple volumes in indexes... by gbowden_pheaa Path Finder in Getting Data In 05-21-2018 0 6	0	6
Why is our dispatch directory getting full with strange CSV files? Hi, Our dispatch directory is getting full with some newly created srfiletmp_420128713.csv like files. These files a... by thezero Path Finder in Getting Data In 05-21-2018 3 5	3	5
Universal forward installed on windows server but can't get the logs for that server. Hi Everyone, I am testing universal forwarding in our testing environment and also installed universal forwarder in ... by Sagar0511 Explorer in Getting Data In 05-21-2018 0 3	0	3
Splunk DSYM upload script in build phase is returning 400 Splunk DSYM upload script in build phase is returning 400 while contacting the server, and failing the builds. I tri... by sjun Explorer in Getting Data In 05-21-2018 4 6	4	6
syslog indexing However at this point I am getting logs from syslog data source and they are saved at /central/$hostname$/gateway.log... by riqbal Communicator in Getting Data In 05-21-2018 0 4	0	4
How to forward Windows event log "application" to 2 different indexes? Our Splunk 6.1.5 environment is on Linux. We have universal forwarders installed on our windows machines. They are al... by KooroshFooladba Explorer in Getting Data In 05-21-2018 0 7	0	7
IndexedExtractionsConfig ERROR causes splunkd to crash with an input script that generates json data stream Hi, I am currently working in improving the Nmon App and notably the way splunk generates and indexes the perf monit... by guilmxm Influencer in Getting Data In 05-21-2018 0 2	0	2
setup heavy forwarder and making it a deployment client hello, we are trying to setup HF with multi NIC feature and we wanted to know the steps as we also need to make the ... by teddyidc1101 Communicator in Getting Data In 05-20-2018 0 1	0	1
Unable to login for the second time (Windows local machine) I have problems logging in to Splunk enterprise free version after the first login. I have tried the 'admin' and 'cha... by YvetteTeoRP Engager in Getting Data In 05-20-2018 0 4	0	4
splunk handling csv file with each line have different format dears, I have CSV file consist for example of multiple numbers of line each line has different header and length dep... by ahmedhassanean Explorer in Getting Data In 05-19-2018 0 2	0	2
Can the heavy-forwarder send to multiple receivers? The 6.2.0 heavy-forwarder is configured to send everything to the indexer xyz. Now I want it to send specific events ... by ufotech Explorer in Getting Data In 05-19-2018 1 6	1	6
splunk cloud, universal forwarder no data in I have setup splunk cloud yesterday and installed a universal forwarder on both linux (centos) and windows (windows s... by guidovbrakel New Member in Getting Data In 05-18-2018 0 1	0	1
Crowd sourcing sensitive data masking rules (PII, Passwords, keys, etc.) for various sourcetypes My team has a number of index-time sedcmd-based password masking rules for words in known positions of passwords. Th... by dstaulcu Builder in Getting Data In 05-18-2018 0 3	0	3
extract field from adfs logs I am trying to extract data out of an adfs log, but I do not how how I would do this (regex and I can't seem to get a... by jbanda Path Finder in Getting Data In 05-18-2018 0 1	0	1
Data is not indexed from a critical log file. Data is not indexed from critical log file. File /var/abcACSLog.txt rotates by its volume, like every 100MB and immed... by sylim_splunk Splunk Employee in Getting Data In 05-18-2018 0 2	0	2
Why is the Windows universal forwarder not showing in forwarder management? I am trying to create a new universal package for our windows servers. The log data from our test server is showing u... by Rebeccakettler Path Finder in Getting Data In 05-18-2018 0 2	0	2
Remove { } from json file before indexing HI, i am trying to index a local json file, but when going trough the sourcetype the predefined json source type is ... by abilis Explorer in Getting Data In 05-18-2018 0 2	0	2
Forward data to third party and self-service Splunk Cloud We are using self-service Splunk Cloud. and all clients are using UF to directly send data to self-service Splunk Clo... by aanataliya Explorer in Getting Data In 05-18-2018 0 0	0	0
How to add IIS logs and Apache logs to common information model for web ? Hi All, We would like to added the IIS logs and Apache logs to the CIM model for the Web, not sure what exactly need... by Hemnaath Motivator in Getting Data In 05-18-2018 0 1	0	1