Getting Data In

Community Activity

	Integration of MS Exchange server with splunk Dear All, I need your assistance in fetching Microsoft Exchange Server logs using the Splunk Universal Forwarder. I c... by I_B New Member in Getting Data In 01-15-2026 0 3	0	3
	Splunk Enteprise Delayed searches Hello Team,I wanna ask something that I really cannot figure out by myself , I have a splunk entreprise Installed on ... by fedayn05 Path Finder in Getting Data In 01-13-2026 0 8	0	8
	[HEC] Endpoint : TCP reset session all time Hello Everyone, I need your help about a problem with Splunk HEC. I use the endpoint "event" to send logs into multip... by shinigami35 Explorer in Getting Data In 01-13-2026 0 16	0	16
	Splunk does not detect new files on CIFS-mounted directory until restart EnvironmentSplunk Enterprise (single-instance: indexing + monitoring on same host)OS: LinuxLog directory mounted via ... by koyachi Explorer in Getting Data In 01-13-2026 0 1	0	1
	How can I stream Google Workspace Vault logs into Splunk? I want to add vault logs to my inputs.conf for the Google Workspace TA. I added the following stanza[activity_report:... by danielbb Motivator in Getting Data In 01-12-2026 0 3	0	3
	Splunk Add-On for Windows - Incorrect TaskCategory I am running into an issue where the TaskCategory field extracted by the Splunk Add-On for Windows does not match the... by nixhydra Explorer in Getting Data In 01-12-2026 0 11	0	11
	Best architecture for collecting logs from a third-party app hosted on AWS via API calls (Splunk Enterprise On-Prem) Hello Splunk community,I’m working with Splunk Enterprise On-Prem and have three Heavy Forwarders (HFs) in my enviro... by Nicolas2203 Path Finder in Getting Data In 01-09-2026 0 2	0	2
	Why Splunk HF sends all its inthernal logs to Syslog reciever Hello Team , I want to send splunk HF windows security logs to a syslog server . I have syslog-ng installed there whi... by vikasg Loves-to-Learn Lots in Getting Data In 01-08-2026 0 4	0	4
	CyberArk Audit for Splunk Is there any documentation on creating an input for this app? (https://splunkbase.splunk.com/app/6608)I installed the... by vh Explorer in Getting Data In 01-08-2026 0 7	0	7
	Why does /var/log/messages get flooded by one host? We configured rsyslog to route data from a certain host to the file system of the server, and what we see is that lot... by spl_aficionado Path Finder in Getting Data In 01-07-2026 0 6	0	6
	Clarity on metrics license usage and how the data is stored in the disk HiI am trying to understand how the metrics events are being tracked and how the disk space is utilised in Splunk.I a... by _pravin Contributor in Getting Data In 01-07-2026 0 0	0	0
	Access to Data Management Experience / Edge Processors Hello,I'm trying to access the Data Management Experience and specifically Edge Processors. Our company has Splunk En... by mmendez-opentec Explorer in Getting Data In 01-07-2026 0 1	0	1
	Error while Addding an Edge Processor Hi,I am test using Edge Processor (Data Management).I have just enable Edge Processors from Data Management App on Sp... by karn Path Finder in Getting Data In 01-05-2026 0 2	0	2
	Extract json fields I have multiple fields under the interesting fields section named field1, field2, field3, and so on. Each of these fi... by falcon Observer in Getting Data In 01-02-2026 0 4	0	4
	o365 add-on upgrade Hello,I need to upgrade the o365 add-On to the latest version on both the search head and the heavy forwarder, can so... by maheshnc Path Finder in Getting Data In 01-02-2026 0 5	0	5
	Splunk Add-on for AWS I am trying to configure the Splunk Add-on for AWS for brining in CloudTrail logs via SQS S3. I have the following Us... by drggfish1 Explorer in Getting Data In 01-02-2026 0 3	0	3
	Events to Metric Conversion : Does data cloning and routing cause overhead on splunk Hi All,I have a requirement where I have to write metrics data to metrics index from existing events index as soon a... by Poojitha Communicator in Getting Data In 12-31-2025 0 3	0	3
	Tips on how to create props.conf on Splunk cloud Greetings, I am trying to create a little TA to run a command to collect status for the nessus agent. I have it to... by splunkisaurus Observer in Getting Data In 12-30-2025 0 12	0	12
	How do I solve "Listen Claim" issue when getting Event Hub data through Splunk Add-on for Microsoft Cloud Services? Hello!I am working with version 4.1.3 (latest) of the Splunk Add-on for Microsoft Cloud Services that is installed on... by andrewtrobec Motivator in Getting Data In 12-30-2025 0 10	0	10
	splunkd causes OutOfMemory when searching data with large event size I am onboarding a JSON dataset whose event size is very close to 1MB. I have to increase TRUNCATE to 1000000 (from d... by yuanliu SplunkTrust in Getting Data In 12-29-2025 0 2	0	2
	Is there are default approach for journald syslog? We're updating our Linux Servers to Debian 12. A few host went "missing" afterwards in Splunk.While investigating int... by dsfyxcasdcertzu Explorer in Getting Data In 12-23-2025 0 4	0	4
	The TCP output processor has paused the data flow. Forwarding to splunk cloud indexers has been blocked Hello everyone,We are using a Universal Forwarder (UF) as an intermediate forwarder to send logs from other UFs in ou... by ThuLe Explorer in Getting Data In 12-22-2025 0 1	0	1
	Universal Forwarder I am getting a mismatch between the version of OPENSSL installed on my OS and in the Universal Forwarder. It seems to... by drggfish1 Explorer in Getting Data In 12-21-2025 0 5	0	5
	Indexer cluster ignores TRUNCATE for splunk_python Have a nice day, everyone!For continuous event truncation tracking, I have a simple alert that notifies me about trun... by NoSpaces Contributor in Getting Data In 12-19-2025 0 2	0	2
	My Universal Splunk Forwarder Hello Everyone, please for the past four weeks I have been struggling with ensuring that the Universal splunk Forwar... by CHIBUIKEM Engager in Getting Data In 12-18-2025 0 3	0	3