Getting Data In

Community Activity

Help in Splunk query urgent plz - merge results in 2 deferent source and same index csv files Dears,Need assistance with a Splunk query to retrieve data from two sources: source X and source Y. I want to match r... by abedcx Explorer in Getting Data In 01-12-2024 0 1	0	1
How to add BOM to alert attached CSV file? Hi experts, One of my customer wants to add UTF-8 BOM info to CSV files which are attached to email alerts. In case ... by kwchang_splunk Splunk Employee in Getting Data In 01-11-2024 0 5	0	5
we need to setup alert for montoring java processes we need to set up an alert if a server no java process for 15mins, only one alert was sent until the issue was solved... by jenniferhao Explorer in Getting Data In 01-11-2024 0 1	0	1
Integration of Backbase (Fintech) with Splunk for logging and monitoring Hello community members,Has anyone successfully integrated the Backbase fintech product with Splunk for logging and m... by usej Explorer in Getting Data In 01-11-2024 0 1	0	1
Can anyone share details on how to monitor BackBase (https://backbase.com/) with Splunk? Can anyone share details on how to monitor BackBase (https://backbase.com/) with Splunk? What are you doing today an... by sdaniels Splunk Employee in Getting Data In 01-11-2024 0 4	0	4
HEC timestamp parsing Hello there.I noticed lately (in a kinda painful way ) that if the time field is present in json sent to a HEC colle... by PickleRick SplunkTrust in Getting Data In 01-10-2024 0 4	0	4
Host with Splunk Universal Forwarder not forwarding to Splunk Cloud Hi! We have been installing Splunk Universal Forwarder on different servers in the on-prem environment of the company... by jalbarracinklar Engager in Getting Data In 01-10-2024 0 4	0	4
How to optimize alerts for changes made to the Administrators group in "MF Local Admin Group Member Changes" Hello,One of our MF Local Administrative Group Member rule is generating a significant number of alerts because sccma... by AL3Z Builder in Getting Data In 01-10-2024 0 0	0	0
How can I automate the downloading of universal forwarder? Everything I am reading is that to download via wget, cURL, etc, that you have to specify the full path that contains... by petersonjared Explorer in Getting Data In 01-10-2024 1 5	1	5
Can I have multiple specs (host, source, sourcetype) in props.conf? In props.conf, I see you can have the spec as host, source, sourcetype etc. Can you combine them? Can I have host AND... by helenashton Path Finder in Getting Data In 01-10-2024 0 8	0	8
forwarding logs to a gcp bucket Hi, I am trying to to forward logs from a heavy forwarder to a gcp bucket using the outputs.conf, but it has been uns... by yvan-rostand Engager in Getting Data In 01-09-2024 0 2	0	2
Palo Alto App not doing sourcetype transform Hello I have data being sent from Palo Alto to our syslog server. I have set it up following the guide here: https:/... by xxkenta Explorer in Getting Data In 01-09-2024 0 6	0	6
HEC HttpInputAckService pending queries Hello, We set HEC http input for several flows of data and related tokens, and we added ACK feature to this configura... by beneteos Explorer in Getting Data In 01-09-2024 0 5	0	5
orig_time field missing from the windows event logs Hi,Has anyone else encountered a situation where the 'orig_time' field isn't showing up in the Windows event logs wit... by AL3Z Builder in Getting Data In 01-09-2024 0 0	0	0
How to monitor and index actively? Hi, I have problem with my Splunk indexing. I found an index haven't been running and updated for 2 days. But it has... by hochit Path Finder in Getting Data In 01-08-2024 0 4	0	4
Getting Error while upload CSV : "Encountered the following error while trying to save: File has no line endings" While I'm trying to upload my csv file as lookup, encountering the error like - "Encountered the following error whi... by Naa_Win Path Finder in Getting Data In 01-08-2024 0 6	0	6
Powershell Script to Poll for IIS AppPool consuming large amount of memory- is there a better way? Our application developers were looking to poll the service states of their IIS Application Pools. This would be jus... by JHannan Explorer in Getting Data In 01-08-2024 0 15	0	15
AWS Logs via Lamda to HF drop preceding key from fieldname Hello, I've got a Lamda function exporting AWS logs via HEC to my HF's to my indexers.Unfortunately, the AWS logs are... by cybersecnutant Explorer in Getting Data In 01-06-2024 0 1	0	1
Set a user timezone through REST API Is there a way to set another user's timezone from the REST API? My user account with edit_user capability cannot cha... by camillak Path Finder in Getting Data In 01-05-2024 0 1	0	1
Indexqueue blocked on Heavy Forwarder I know there are similar posts about this, but I am not sure on what to do or tweak here.Messages I am getting are si... by cmlombardo Path Finder in Getting Data In 01-05-2024 0 3	0	3
deployment-app controlled outputs.conf not working Hello,I have a standalone Splunk Enterprise system (version 9.x) with 10 UFs reporting (Splunk Enterprise and the UFs... by dkr3500 Path Finder in Getting Data In 01-04-2024 0 1	0	1
How to troubleshoot why my PowerShell scripted input is not being run? I've set up a new scripted input using powershell as follows: Inputs.conf: [script://$SPLUNK_HOME\bin\scripts\RESEN... by mark19632 New Member in Getting Data In 01-04-2024 0 6	0	6
Splunk Blacklist DesktopExtension.exe addition inputs.conf Hello all,I am trying to blacklist this app that is generating a ton of Windows Event logs; till I find what app it i... by EiffelPalace Engager in Getting Data In 01-03-2024 0 5	0	5
Only first line from logfile is logged. Hi.We are seeing weird behaviour on one of our universal forwarders. We have been sending logs from this forwarder fo... by OGJ Engager in Getting Data In 01-03-2024 0 3	0	3
Forwarding data from splunk forwarder to splunk dashboards I am new to splunk, and need help configuring the log files collected from my honeypot to monitoring VM. They are on ... by jaxxxx New Member in Getting Data In 01-03-2024 0 1	0	1