Getting Data In

Community Activity

	connecting SPLUNK to ODBC Data Base Hi,I'm looking for a way to connect the SPLUNK to a ODCB data base, so the Splunk will be able to pull any data neede... by Moshe New Member in Getting Data In 04-07-2024 0 5	0	5
	Optimizing Splunk ES App Licensing Costs: Selective Log Ingestion Strategies We are gathering logs from various devices that contain security, performance, and availability-related information. ... by ramesh_babu71 Path Finder in Getting Data In 04-06-2024 0 2	0	2
	Barracuda Email Gateway Add-on Field Extraction not Extracting Hello all I hope this is the right forum,I am having some trouble with the Barracuda Email Security Gateway Add-on an... by BoxerguyT89 Loves-to-Learn Lots in Getting Data In 04-06-2024 0 2	0	2
	How can I pull email data from Salesforce? I already have the Salesforce add-on for Splunk. Does Salesforce have an email source that I can tap on to get those ... by dionrivera Communicator in Getting Data In 04-05-2024 0 0	0	0
	Azure Event Hub and Add-on for Microsoft Cloud Services Configuration Issues Hello all -Trying to get Azure Event Hub data to flow into Splunk. Having issues configuring it with the add-on for M... by WumboJumbo675 Explorer in Getting Data In 04-05-2024 0 5	0	5
	Index only Specific Lines from a Strucutred Log File I’m using Splunk Enterprise 9 with Universal Forwarder 9 on Windows. I'd like to monitor several structured log files... by shocko Contributor in Getting Data In 04-05-2024 0 8	0	8
	SynAck logging channel Hello all,SynApp: 3.0.3OS: RHEL8 FIPSSplunk 9.0.xI configured this app and changed the index IPs in the local inputs.... by _joe Contributor in Getting Data In 04-05-2024 0 0	0	0
	Getting time from XML Property I'm experimenting with doing ETW logging of Microsoft IIS, where the IIS log ends up as XML in a windows eventlog.But... by Ulwur2 Loves-to-Learn in Getting Data In 04-05-2024 0 2	0	2
	Ingest actions/nullQueue not working for some Windows multiline events. I'm trying to remove some Windows events from being ingested ... example below:The regex I've tried in both Ingest Ac... by gazoscreek Path Finder in Getting Data In 04-04-2024 0 2	0	2
	Splunk Dashboard Query to List when CD Drive is access and Written to Is there a Splunk query I can use to list when CD drive is access and written to and the users associated with those ... by Rosie2287 Explorer in Getting Data In 04-04-2024 0 5	0	5
	Splunk Dashboard Query to Monitor Inactive Accounts Is there a query I can add to my splunk dashboard that will list accounts inactive over 35 days? by Rosie2287 Explorer in Getting Data In 04-04-2024 0 4	0	4
	What Data is the HF Actually Indexes? From what I understand about Splunk, it works on the raw data and does not parse it. It does mark and "segments" area... by AvivBenSha New Member in Getting Data In 04-04-2024 0 2	0	2
	Ingesting logs through custom API creates duplicates Hi Splunkers,Let me provide a bit of background, We are ingesting logs into splunk using an API from our DLP servic... by JLopez Explorer in Getting Data In 04-04-2024 0 1	0	1
	How to forward only Windows events (XML) to a 3rd party system? I have a universal forwarder running on my Domain Controller which only captures logon/logff events.inputs.conf```[Wi... by billy Loves-to-Learn Everything in Getting Data In 04-04-2024 0 2	0	2
	Logs not getting pushed to splunk server by Splunk logging for java using Http Event Collector with log4j configuration I am sending logs from application to splunk server by Splunk logging for java using Http Event Collector with log4j2... by VinayakJamadar Loves-to-Learn Lots in Getting Data In 04-03-2024 0 3	0	3
	Event Breaking events Zscaler Hello, I need to event break the following events, but they have a different date format. At the beginning, only at t... by CarolinaHB Explorer in Getting Data In 04-03-2024 0 7	0	7
	Cronjob schedule different timezone than default system time for savedsearches I ran a \|REST search to export the list of savedsearches along with their cronjob schedules. The cronjob scheduled a... by Splunker2024 New Member in Getting Data In 04-03-2024 0 1	0	1
	ms:defender:vulnerability API input add Is it possible for the next version of the add-on to add MS defender vulnerabilty API calls to this add-on? Currently... by alexcybrill12 Engager in Getting Data In 04-03-2024 0 1	0	1
	adding data from Remote sources I've setup Splunk enterprise as a trial in a test domain however im having issues importing logs from different remot... by conan_wall New Member in Getting Data In 04-03-2024 0 3	0	3
	Pulling printer logs and reporting via print server I have an odd task I'm trying to fulfill and I'm not entirely sure how to go about it. We have a print server that fo... by Hiattech Explorer in Getting Data In 04-03-2024 0 7	0	7
	Error occurred when collecting OAuth Token Log via Google Workspace for Splunk Hello!When I set up to collect Google Workspace's OAuth Token Event log using Google Workspace for Splunk, the follow... by ssanplunk Path Finder in Getting Data In 04-03-2024 0 0	0	0
	Event Detail ++ _time field "+" icon Hi there.Did you saw in many events, exploding the event to detail, the _time field has a "+" icon on its side?Explod... by verbal_666 Builder in Getting Data In 04-02-2024 0 2	0	2
	Debugging python from the command line that needs a session key Hi All, I'm trying to debug netskope_email_notification.py from the TA-NetSkopeAppForSplunk by running this command. ... by jwhughes58 Contributor in Getting Data In 04-02-2024 0 2	0	2
	Splunk not formatting AMP logs I will preface by saying I am very new to using Splunk. We have recently did a rebuild of our environment and I notic... by jaridaycock Explorer in Getting Data In 04-02-2024 0 1	0	1
	ERROR ExecProcessor [ ExecProcessor] - message from "/opt/splunk/etc/apps/onepassword_events_api/bin/signin_attempt Statement: You install 1Password Events Reporting for Splunk from https://splunkbase.splunk.com/app/5632 Problem: ... by raz_gp Explorer in Getting Data In 04-02-2024 0 2	0	2