Getting Data In

Community Activity

Using the auth0 add on not seeing any data HISet up the add on on a cloud instance. Not seeing any data come in via HEC. Any ideas on how to troubleshoot? Thank... by rkeller_splunk Splunk Employee in Getting Data In 05-09-2024 0 1	0	1
Ingest Action to include message I am using ingest action to filter the log message before being indexed in splunk..I want to include the message that... by yuvaraj_m91 Loves-to-Learn Lots in Getting Data In 05-09-2024 0 6	0	6
props and transforms not working Hi All, My props and transforms is not working. Kept the props and transforms in the Heavy Forwarder. can anyone plea... by blbr123 Path Finder in Getting Data In 05-09-2024 0 8	0	8
bash_history file monitoring Hi.I'm using Splunk Enterprise 7.3.2 and installed universal forwarder 8.2.6 on Linux.I was asked to monitor the .bas... by minjg Engager in Getting Data In 05-08-2024 0 3	0	3
How can I get Ansible script to automate installation of splunk universal forwarder on 1000 Linux Red Hat Servers?? Please I need detailed step-by-step process on how I can install splunk universal forwarder on 1000 linux red hat ser... by ngwodo Path Finder in Getting Data In 05-07-2024 0 7	0	7
Correlation Help Log Hello Splunkers, I'm new to Splunk and I'm stuck; I'm getting more data than I'm supposed to. Users are showing up wh... by m92 Loves-to-Learn Lots in Getting Data In 05-07-2024 0 8	0	8
props config for logs Hi Splunk Community, I am trying to create a props.conf for the sample log file below. My goal is to * Delete th... by Strangertinz Path Finder in Getting Data In 05-07-2024 0 11	0	11
Splunk Integration How do i integrate my website hosted on AWS(ec2) with splunk? by devraajpandya11 New Member in Getting Data In 05-07-2024 0 3	0	3
Splunk Connect For Syslog - Sending syslog using Kiwi Syslog Message Generator (UDP 514) failed but TCP 514 success Hello. I am completely new at Splunk. Recently, I've recently taken on a role where I'll be working with Splunk quite... by azer271 Path Finder in Getting Data In 05-06-2024 0 3	0	3
Deployment Server cannot restart deployment clients after new changes have been downloaded We use a Deployment server to manage config of our UF fleet. Recent changes to privileges on clients are preventing t... by calvinmcelroy Path Finder in Getting Data In 05-06-2024 0 1	0	1
Field extractions from Application logs - pick specific value I have splunk logs where there is key word like <ref>BTB- Abcd1234<ref> as it's primary key for trade reference and ... by vijjuh Engager in Getting Data In 05-06-2024 0 1	0	1
How to ensure logs delivery to Splunk Hello Splunkers!Imagine a scenario:There is a test environment with Splunk being deployed in ubuntu-server 20.04 virt... by splunky_diamond Path Finder in Getting Data In 05-06-2024 0 7	0	7
Mupltiple whitelist in inputs.conf Hello,I need to monitor two different types of events for some servers, the authentication events (4624,4634,4625) fo... by marco_massari11 Communicator in Getting Data In 05-06-2024 0 8	0	8
Why am I getting the error"Unable to distribute to peer named X.X.X.X:YYYY at uri=X.X.X.X:YYYY using the uri-scheme=https because peer has status="Down" on my search head for all queries? I am getting the below error on my search head for all the queries. "Unable to distribute to peer named X.X.X.X:PPPP... by pavanae Builder in Getting Data In 05-05-2024 0 5	0	5
Filtering Syslog Inputs before Indexing (to optimize license usage) Hello I am referring to the following documentation Route and filter data - Splunk Documentation I would like to disc... by yh Path Finder in Getting Data In 05-05-2024 0 19	0	19
Splunk Enterprise differences and comparison Hello splunkers!I have a simple question regarding Splunk data models and regular searches, I have found some answers... by splunky_diamond Path Finder in Getting Data In 05-05-2024 0 6	0	6
Why are there duplicated Windows Security Logs? Hi, My problem is duplicated windows security logs. 2 or more log same as each other. why do that ? 03/18/2019 10:... by burakatabay Path Finder in Getting Data In 05-03-2024 1 10	1	10
does not perform log collection We have splunk installed and the collection was happening normally, but for a few days now the collection has stopped... by ArianeSantos New Member in Getting Data In 05-02-2024 0 2	0	2
Running a PowerShell script as admin in Splunk I have a PowerShell script that needs to be ran as admin to be able to load in all of the data. It returns a .csv fil... by jdhart1312 Loves-to-Learn Everything in Getting Data In 05-02-2024 0 2	0	2
Migration of indexer data from default location to new location We want to migrate cluster indexers data from default location that is from (opt/splunk/var/lib/splunk) to customize ... by mshakeb Loves-to-Learn Everything in Getting Data In 05-02-2024 0 3	0	3
HEC event field I need to connect data from a third party application via HEC to Splunk. It sends data in this format 1 event per req... by Haleb Path Finder in Getting Data In 05-02-2024 0 1	0	1
Splunk heavy forwarder vs universal forwarder Hello Splunk community. I have been searching for this question quite a lot and went through many articles, but it’s ... by splunky_diamond Path Finder in Getting Data In 05-01-2024 0 4	0	4
splunkd is not running I'm currently building my own home instance and I'm having some trouble with my UF. So far I've :installed the lates... by Exxnihiloo Engager in Getting Data In 04-30-2024 0 2	0	2
Zulu time Helloi read many topics on zulu time but i m not able to solde onei have a date in this way 2024-04-29T12:01:15.710Z ... by Laurent Explorer in Getting Data In 04-30-2024 0 3	0	3
Splunk ES Email alert and notable events are not getting triggered Hello, Splunk community! I have created a correlation search with the following search string: index="kali2_over_sys... by splunky_diamond Path Finder in Getting Data In 04-29-2024 0 2	0	2