Getting Data In

Community Activity

Splunk Cloud - How do data configurations get specified with UF's and Splunk SaaS indexers + Search Heads Hi all, I am coming from Splunk on-prem so this is a bit confusing to me. I have looked at architectures regarding Sp... by IAskALotOfQs Path Finder in Getting Data In 01-21-2024 0 1	0	1
Expired key microsoft 365 app I have configured the APP for microsoft 365 which was working properly but it stopped working and after checking it ... by splunkcol Builder in Getting Data In 01-20-2024 0 5	0	5
SPLUNK TA to Write Log from SPLUNK HF server to S3 and SQS Hello,Do we have any SPLUNK TA that can write logs from SPLUNK Server with HF to AWS S3/SQS. Any recommendation will... by SplunkDash Motivator in Getting Data In 01-20-2024 0 6	0	6
How to fix vetting issues while uploading app to cloud ? Hi,Which I am trying to upload the custom app to splunk cloud it is not passing the vetting, how we can fix this issu... by Raj Builder in Getting Data In 01-20-2024 0 10	0	10
Why am I getting "This path does not exist or is not accessible." using Splunk Web in Splunk Light to monitor a certain folder? I just installed Splunk Light 6.2.5 on CentOS 7. Using the web interface, I go to AddData screen, then Monitor, then... by jmichelgarcia Engager in Getting Data In 01-20-2024 0 3	0	3
Windows log file data is not coming hai i have configured below log file stanza but not getting data into splunk from windows UFhaving latest on Jan 4th ... by sekhar463 Path Finder in Getting Data In 01-19-2024 0 5	0	5
Mutlivalue Field Extraction Hello,I'm writing some field extractions for a Tomcat access log. The logging format is"%{E M/d/y @ hh:mm:ss.S a z}t ... by nateloepker Explorer in Getting Data In 01-19-2024 0 2	0	2
extract field between two single quotes Sorry i am a noob to regex and splunk regex especially.Regex to extarct all that is between the two single quotes. th... by sam90651 Loves-to-Learn Lots in Getting Data In 01-18-2024 0 11	0	11
remove prefix on every events using SEDCMD Hi Guys We are getting logs through syslog with its priority / facility data “ <14>1” prepended with every events as ... by roopeshetty Path Finder in Getting Data In 01-18-2024 0 4	0	4
Splunk Agent Install Issue - Error: The system cannot find the path specified. Please help us to fix the below installation issue.It seems the Splunk is trying to find some file in the system but ... by seenivasan Loves-to-Learn Lots in Getting Data In 01-18-2024 0 5	0	5
Blacklist Windows Event ID 4769 Hi, I am trying to blacklist Windows Event ID 4769 from a particular User ID. Is this possible to be implemented. I ... by Yadukrishnan Explorer in Getting Data In 01-18-2024 0 5	0	5
Jamf Protect and Splunk Integration Issues Hi team, I've completed all the configurations according to the steps provided in the following link for integrating ... by btluynk Loves-to-Learn Lots in Getting Data In 01-18-2024 0 0	0	0
Single Splunk command to generate dummy data that can be run in the search bar Can someone advise on a single Splunk command that can be run in the search bar that will display dummy data? This wa... by lukesplunklukes New Member in Getting Data In 01-18-2024 0 8	0	8
Monitoring Oracle on a Solaris Cluster Hi, I need to monitor an Oracle database running on a Solaris Cluster. Do you have any suggestions on how to do it? ... by mzorzi Splunk Employee in Getting Data In 01-18-2024 1 3	1	3
merging as single event from mutlple lines Hi Guys, We are collecting the Kubernetes logs using HEC on our Cloud splunk. When ever there is a ERROR entry in the... by roopeshetty Path Finder in Getting Data In 01-18-2024 0 1	0	1
How to break events on timestamp? Events are merging like this:2022-02-02T15:26:46.593150-05:00 mycompany: syslog initialised2022-02-02T15:26:48.970328... by splunkN00b Observer in Getting Data In 01-17-2024 0 2	0	2
Change indexer i need to change a indexer for a data send by a universal forward, i've this data source_type="pippo" with sourcetyp... by toporagno Explorer in Getting Data In 01-16-2024 0 5	0	5
Splunk Forwarder: Why does it stop sending data after Too Many Fields? Hello, We have a heavy forwarder that occasionally receives and event that exceeds the bounds of Splunk indexers. Whe... by ohbuckeyeio Communicator in Getting Data In 01-16-2024 0 7	0	7
How to remove ::ffff: from the windows events logs at indexing time and in Search? Hi How to remove the ::ffff: before all the src_ip's and src in the windows event logs? What Regex I have to use in... by kiran331 Builder in Getting Data In 01-16-2024 0 7	0	7
CSV parsing fails because of long header Hello, I have a CSV file with many MANY columns (in my case there are 7334 columns with an average length of 145-146 ... by tmaoz Loves-to-Learn Everything in Getting Data In 01-16-2024 0 5	0	5
How to combine two queries? Hi All,I have 2 different queries and I want to combine their results. These 2 queries return a single value output I... by kranthimutyala Path Finder in Getting Data In 01-16-2024 0 15	0	15
Defined custom Visualization in Dashboard Studio Hi,I am creating a Dashboard and using the Dashboard Studio template, and previously I developed a SplunkVisualizatio... by hieuba Loves-to-Learn Lots in Getting Data In 01-15-2024 0 4	0	4
Masking email i need to masking email on my data, i'm tring using transforms.com but [emailaddr-anonymizer] REGEX = ([A-z0-9._%+-]+... by toporagno Explorer in Getting Data In 01-15-2024 0 1	0	1
Add-on for BlueCat IPAM (new) - BlueCat API v2 HiI didn't find an email address from the developer Christopher Caldwell so I try it this way.The BlueCat Address Man... by dermuergoo New Member in Getting Data In 01-15-2024 0 0	0	0
Broken SysMon link client to SIEM Hello Community,We have a challenge with our SysMon Instance.While testing compatibilities we noticed that after SysM... by DanAlexander Communicator in Getting Data In 01-15-2024 0 0	0	0