Getting Data In

Thread Info

AIX 7.1 64 bit

Hi Do splunk support AIX 7.1 64bit? recently we have a project they would want to apply FSCHANGE on AIX7.1 64bit. Tha...

by Explorer in

Can I create a minimum capability user role on a Linux Universal Forwarder so events can be accepted and forwarded to the indexer?

I have a Linux Universal Forwarder that will be receiving events via the REST interface's simple receiver. https:/...

by Path Finder in

Where is the admin/LDAP-groups API documentation?

I found http://answers.splunk.com/answers/202990/how-to-get-ldap-group-name-by-using-query-or-rest.html so I can crea...

by New Member in

Does Splunk take into consideration Timezone Daylight Saving ?

Hello Splunkies and Splunklemen , Does Splunk Automatically take into consideration Daylight Savings Time (DST) ? ...

by Super Champion in

How archiving splunk logs to hdfs work

I know that Hunk issues the archivebuckets command, which will start the archiving process on each indexer. What is t...

by New Member in

nullQueue for Windows event codes not working

Hello, I am trying to setup a nullQueue for Windows security events we do not care to index into Splunk and my con...

by Communicator in

Is there an app to index and view MySQL logs in Splunk?

Hi, I would like to pull the logs and view from one of the Event Log Analyzer(ELA) into Splunk. Splunk 6.1 is the ...

by Engager in

Why an extracted CSV sent over email is line breaking at 990th character and how to change this setting?

I'm extracting a CSV and sending it over email. The extracted CSV sometimes contains lines whose length is greater th...

by Explorer in

How to apply a timezone (TZ) props.conf entry to a rewritten source or host?

I have a datasource which includes a timestamp without a timezone forwarded from a single collection source, and some...

by Explorer in

Overriding TZ for source

I have a JBoss/Tomcat access log that has an incorrect Timezone configuration, causing Splunk to set the time to an h...

by Motivator in

How do I extract a timezone expressed as the difference in minutes between UTC and local time?

I am trying to configure timestamp format for a db2diag log file, and I am having trouble reading the timezone since ...

by Engager in

Logging in UTC, not displaying in correct timezone

We're receiving logs from Bluecoat Proxies via syslog. The logs are written locally where a UF picks them up, sends t...

by New Member in

forwarder source logs displaying in UTC Time - Need EST

Hi, I have a forwarder that goes by EST. My Splunk server also goes by EST. Today I had to add a source (from a co...

by Communicator in

Which ports does Hunk use to connect to Splunk indexers and what else needs to be installed and configured?

Which ports does Hunk use to connect to the Splunk indexers? What Splunk version needs to be installed on the inde...

by New Member in

DBX MSSQL Cannot Connect

Hi, I have been struggling trying to get DBX connected to an MSSQL DB. There is no named instance: In database....

by Contributor in

OS X Application analytics: How to upload event data from anonymous applications to Splunk Cloud via REST API?

I'm trying to load application usage information from my OS X application into Splunk Cloud. I've seen mint.splunk.co...

by New Member in

Why am I getting error "Could not find script on deployment client" trying to add a local script on the universal forwarder from the deployment server?

How do I add a local script on the forwarder from the deployment server? I've put the script on the Universal forward...

by Path Finder in

Monitoring Log File provided as - Days of Week and Hourly

We are provided a certain type of log in the following format: App-Hourly.log App-Mon.log App-Tue.log App-Wed.lo...

by Path Finder in

syslog field over-rides host_segment

Hi, I have a syslog server (Centos 6) with splunk 4.3.1 that receives syslog using the rsyslog daemon. The folder ...

by Path Finder in

How to force Splunk to reindex renamed log files?

We want to monitor situations where a log file gets renamed to a different name within the same directory or moved to...

by Communicator in

system local folder vs forwarder local folder

In Heavyforwader if we go to SYSTEM directory we have Local and Default directories created by it self in which we ha...

by Path Finder in

Do all the supported Splunk SDK languages have the same capabilities?

I know Splunk has support for these languages for the REST API. Python Java JavaScript PHP Ruby C# Do all ...

by New Member in

How do we find users who installed forwarders without permission and also restrict unauthorized forwarders in the future?

In my Company we have a particulate team who works on Splunk and a few users had installed the Forwarder without us k...

by New Member in

Splunk does not start after installation on Windows 7 64 bit?

I have just installed Splunk Enterprise on Windows 7 enterprise (64 bit operating system). After finishing the instal...

by Engager in

Has anyone used Chocolatey/NuGet to install the Splunk forwarder?

We are moving towards using Chocolatey for all our server configuration (after Chef sets up base software), but when ...

by New Member in

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Getting Data In

Discussions

AIX 7.1 64 bit

Can I create a minimum capability user role on a Linux Universal Forwarder so events can be accepted and forwarded to the indexer?

Where is the admin/LDAP-groups API documentation?

Does Splunk take into consideration Timezone Daylight Saving ?

How archiving splunk logs to hdfs work

nullQueue for Windows event codes not working

Is there an app to index and view MySQL logs in Splunk?

Why an extracted CSV sent over email is line breaking at 990th character and how to change this setting?

How to apply a timezone (TZ) props.conf entry to a rewritten source or host?

Overriding TZ for source

How do I extract a timezone expressed as the difference in minutes between UTC and local time?

Logging in UTC, not displaying in correct timezone

forwarder source logs displaying in UTC Time - Need EST

Which ports does Hunk use to connect to Splunk indexers and what else needs to be installed and configured?

DBX MSSQL Cannot Connect

OS X Application analytics: How to upload event data from anonymous applications to Splunk Cloud via REST API?

Why am I getting error "Could not find script on deployment client" trying to add a local script on the universal forwarder from the deployment server?

Monitoring Log File provided as - Days of Week and Hourly

syslog field over-rides host_segment

How to force Splunk to reindex renamed log files?

system local folder vs forwarder local folder

Do all the supported Splunk SDK languages have the same capabilities?

How do we find users who installed forwarders without permission and also restrict unauthorized forwarders in the future?

Splunk does not start after installation on Windows 7 64 bit?

Has anyone used Chocolatey/NuGet to install the Splunk forwarder?

Updated Data Type Articles, Anniversary Celebrations, and More on Splunk Lantern

A Prelude to .conf25: Your Guide to Splunk University

4 Ways the Splunk Community Helps You Prepare for .conf25

How to add 2 separate filters to a single _raw spl...

Splunk Answers Content Calendar May 2025 🎉

Solaris UFs have different build hash than others

Edge Processor Destination not showing up in Pipel...

ERROR: Tor IP are not updating in lookup

Getting Data In

Are you a member of the Splunk Community?

Discussions