Getting Data In

Community Activity

Uploaded a CSV from my PC, where is it? so a semi newb to splunk here, (don't ask, lol) anyway installed Splunk 10.x on my home Windows 10 PC to fart around ... by Gregski11 Contributor in Getting Data In 10-27-2025 0 2	0	2
Use headers as fields for CSV imports on splunk cloud platform Hi, i'm using the splunk cloud platform for a school project. When I import my csv files into splunk, it doesn't see... by pelican Explorer in Getting Data In 10-27-2025 0 3	0	3
JSON field extraction We are ingesting a nested JSON payload in Splunk and want to extract specific fields (like AlertDIsplayName, Descript... by maheshnc Path Finder in Getting Data In 10-27-2025 0 9	0	9
Trouble with global deny list in inputs.conf I've reviewed this issue: https://community.splunk.com/t5/Getting-Data-In/Can-I-edit-inputs-conf-to-initiate-a-global... by JyPl4wNYu7GV1uL Explorer in Getting Data In 10-27-2025 0 7	0	7
Onboard Unknown Source to SC4S Hi all,We are attempting to onboard Defender for IOT on prem sensor logs to SC4S. These are currently being sent over... by loz New Member in Getting Data In 10-27-2025 0 1	0	1
Why did logs stopped abruptly after installing UF on my windows? Hi Guys, I have UF installed on my windows machine, abruptly last month logs got stopped. I check in splunkd log file... by thevikramyadav Explorer in Getting Data In 10-25-2025 1 4	1	4
How to Ingest Azure Monitor Logs into Splunk in Near Real-Time Using Client-Provided CSVs? I’m working on ingesting logs from Azure Monitor into Splunk and currently the client provides the logs manually in C... by rahulkumar Path Finder in Getting Data In 10-21-2025 1 2	1	2
Azure Authentication Logs - Authentication Method Field- How to filter? In our Splunk environment, we currently ingest Azure AD logs and we have three different sourcetypes: azure:aad:signi... by Dmikos1271 Explorer in Getting Data In 10-21-2025 0 1	0	1
Only index events that match criteria I am using the TA_nix addon to get information about the services on the servers. I am only interested in indexing ... by cdevoe57 Path Finder in Getting Data In 10-21-2025 0 9	0	9
Kindly build this in single query. Hi, Sample Data (CSV format) – student_id,student_name,class,school,subject,score1,Alice,10A,School1,Math,852,Bob,10A... by _Raj Explorer in Getting Data In 10-19-2025 0 9	0	9
Forwarder Management shows 0 agents Hi all,Yesterday I had 8 Universal Forwarders visible in Forwarder Management. Today it shows 0.EnvironmentSplunk Ent... by zksvc Contributor in Getting Data In 10-16-2025 0 2	0	2
Why is UBA data stopping send data Hi everyone, I’m investigating an issue where UBA (User Behavior Analytics) data in Splunk appears to have stopped in... by zksvc Contributor in Getting Data In 10-16-2025 0 4	0	4
how to apply the props and tranforms ? Hi all,How to apply props.conf and transforms.confSample Log Data2024-09-01 12:10:22 student=Alice subject=Math score... by _Raj Explorer in Getting Data In 10-15-2025 0 2	0	2
Parsing linux events from syslog to SC4S and Splunk Cloud. Hello,Due to the requirements of the project I am working on, all events will arrive at Splunk Cloud from SC4S. They ... by Rescudero Engager in Getting Data In 10-15-2025 0 3	0	3
Can we perform ingest rules on cooked data? We have cooked data coming from HFs, is there a way to perform ingestion rules on this cooked data? by danielbb Motivator in Getting Data In 10-13-2025 0 2	0	2
DNS lookup failed for "$decideOnStartup": Host not found (authoritative) When 'tail -f /opt/streamfwd/var/log/streamfwd.log' is executedWhy do I get the following message?WARN [1406107101283... by beginne_Splunk Explorer in Getting Data In 10-13-2025 0 4	0	4
Dell PowerScale Add-on for Splunk - Configuration I am trying to fetch the Dell PowerScale metrics data into splunk via HF. I have installed the Add-On on the HF, but ... by viku7474 Explorer in Getting Data In 10-13-2025 0 2	0	2
KVstore failed to upgrade to 7.0 from 4.2 in Splunk enterprose version 9.4.1 This is what we are getting KVStore Upgrade Status:Upgrade Status: kvstore_upgrade_abortedStart Time: Mon Oct 6 21:52... by debsili05 New Member in Getting Data In 10-11-2025 0 3	0	3
5 year data retention bucket setup We have a requirement to have a 5 year data retention. Unfortunately, we discovered that Splunk has not been configur... by Hiattech Explorer in Getting Data In 10-10-2025 0 8	0	8
Persistent Queue on Intermediate Heavy Forwarder Hi All,I would like to confirm whether a persistent queue can be used on an Intermediate Heavy Forwarder that receive... by tech_g706 Path Finder in Getting Data In 10-10-2025 0 1	0	1
Opencti addon on Splunk cluster Hello, is Splunk opencti addon compatible on Splunk cluster (shc)?From 2/3 search heads we are getting this error: "2... by splunkreal Influencer in Getting Data In 10-09-2025 0 2	0	2
Legacy windows (XP, Server 2000) log onboarding to Splunk (without UF) Hi team,Is there any way to onboard legacy windows (XP, Server 2000) logs to Splunk, without UF? Specifically non dom... by Anit_Mathew Engager in Getting Data In 10-08-2025 0 6	0	6
Standalone SH pulling data from Indexer Clustering - but indexer time settings not being applied by default. Existing Env :1. Indexer Clustering2. Search head Clustering.For testing an Issue. I have a a standalone searchhead i... by gnagasri Engager in Getting Data In 10-08-2025 0 3	0	3
TA-MS-AAD Signin logs missing - help! Hey gang, I'm using the Splunk Add on for Microsoft Azure to ingest AAD signin logs to Splunk under the azure:aad:sig... by KendallW Contributor in Getting Data In 10-07-2025 0 4	0	4
Forcing sourcetype on Heavy Forwarder Hi,So I have a HF instance, which receive multiple types of syslog on many different ports. Ideally, you would have a... by Na_Kang_Lim Path Finder in Getting Data In 10-06-2025 0 17	0	17