Getting Data In

Community Activity

Accept Commvault logs in on-prem Splunk servers Question: We are using Commvault Metallic to backup our O365 cloud-based user data in the Microsoft GCC. How can we... by pingli New Member in Getting Data In 03-04-2024 0 1	0	1
Azure DevOps Daily Commits Info in Splunk Has anyone tried this add-on to pull the tfs commits into Splunk via Azure DevOps (Git Activity) - Technical Add-On. ... by ps23 Explorer in Getting Data In 03-04-2024 0 3	0	3
s2s negotiation failed between forwarder running host and indexers Using splunkforwarder-9.0.2-17e00c557dc1.x86_64 on forwarder linux boxUsing splunk-9.0.4-de405f4a7979.x86_64 on index... by parth995 Loves-to-Learn Lots in Getting Data In 03-04-2024 0 2	0	2
HEC Token Authentication Failures Dear Splunkers, If I could get an answer on how do I find which HEC token is causing authentication failures (num_of_... by anil19 Engager in Getting Data In 03-04-2024 0 1	0	1
Splunk Enterprise security Filters I have installed the latest splunk with Splunk enterprise security on it.I have worked with enterprise security befor... by Nawab Communicator in Getting Data In 03-02-2024 0 11	0	11
Sending 2 logtypes to 2 different splunk environments I have a few servers that have universal forwarders that need to be updated where I can send the Application data to ... by FPERVIL Explorer in Getting Data In 03-01-2024 0 3	0	3
Create custom fields at indextime on Heavy Forwarders Hi at all,I have to create a custom field at index time, I did it following the documentation but there's something w... by gcusello SplunkTrust in Getting Data In 03-01-2024 0 20	0	20
rebuild a syslog event Hi Folks, I have a quick question.currently I have a syslog event and I need to see in splunk the raw data the info i... by asabatini Splunk Employee in Getting Data In 03-01-2024 0 4	0	4
How to monitor Apache Hadoop clusters with Splunk Enterprise 6 or later versions? I found the app - Splunk App for HadoopOps but it only supports Splunk Enterprise 5. I am now using Splunk Enterprise... by xingsd163 New Member in Getting Data In 03-01-2024 0 6	0	6
How can I install a forwarder on an AWS:EC2 instance to send data to a local Server? We have recently moved some of our applications to the AWS cloud and now I am being tasked with: "install and configu... by mlinebarger Explorer in Getting Data In 02-29-2024 2 7	2	7
identify the sender of an HEC data flow i at all,I'm ingesting data using HEC in a distributed infratructure using a Load Balancer to distribute traffic from... by gcusello SplunkTrust in Getting Data In 02-29-2024 0 1	0	1
Splunk Cloud Syslog Logs Hello Everyone, New to splunk in my current role, we have had to downgrade our firewall version and switch it to a p... by Atriox New Member in Getting Data In 02-29-2024 0 2	0	2
Monitor memory performance for windows servers Hi Team,As we need to monitor memory by process for each windows hosts. As checked we couldn't find any processes for... by Pooja1 Loves-to-Learn Everything in Getting Data In 02-29-2024 0 10	0	10
Setting searchable retention while creating Index from GUI Hi,I am starting with splunk admin and is confused about one topic. It might be silly.While creating an index, we get... by man03359 Communicator in Getting Data In 02-29-2024 0 3	0	3
splunk ingestion New Splunk instance throwing error after deploying apps. Please help Root Causes --Vevents from tracker.log have not ... by Mr_Sneed Explorer in Getting Data In 02-28-2024 0 1	0	1
Unable to install splunk Installing Splunk 9.2.0.1 on Windows Server 2019 ends prematurely.I get the issue if install the .msi in cmd with /pa... by trha_ Loves-to-Learn in Getting Data In 02-28-2024 0 2	0	2
Use source path time when ingesting data I have the following source .I want to extract time from source when data is ingesting source="/logs/gs/ute-2024-02-0... by power12 Communicator in Getting Data In 02-28-2024 0 3	0	3
Network folder monitoring Hello SplunkerIn my request, I want to monitor the below files, which are under the network folder. I have configured... by uagraw01 Motivator in Getting Data In 02-28-2024 0 21	0	21
Can not choose default sourcetype=_json while onboarding We can not choose default source type _json while onboarding.Need to extract the json data within the log file, which... by Sandivsu Loves-to-Learn Lots in Getting Data In 02-28-2024 0 2	0	2
Splunk add on for Cyber Ark flawed? Looking at the Splunk add on for Cyber Ark, it appears the process is flawed in thatthe Cyber Ark supplied ./Syslog/R... by burnalting Explorer in Getting Data In 02-28-2024 0 0	0	0
Uninstalling splunk forwarder 6.2.3.264376 Trying to uninstalling old version of splunk forwarder, but the msi isn't on the machine.When attempting to unistall,... by nmboner New Member in Getting Data In 02-27-2024 0 1	0	1
Need help ingesting /var/log/mail.log.1 I have a number of log-rotated files for mail.log in the /var/log folder on a unix system. The /var/log/mail.log file... by rene_splunk Explorer in Getting Data In 02-27-2024 0 2	0	2
Why is Splunkd is restarting itself? hello,I have installed splunk on my server and I found many process of splunkd restart, and consume much memory.How I... by snowee Engager in Getting Data In 02-27-2024 0 3	0	3
Log parsing - JSON Hi SMEs, morning I have a situation where logs are coming from an application recently on-boarded in below format, se... by pm2012 Explorer in Getting Data In 02-26-2024 0 1	0	1
Multiline logs coming in single log Hi SMEs, there are logs coming from one of the application in one single event. How to split it in a seperate log eve... by pm2012 Explorer in Getting Data In 02-26-2024 0 1	0	1