Getting Data In

Community Activity

How to breakup data that has no timestamp? Here is a sample of my data. I want to separate each hours/min/sec since I have no timestamp I'm unable to make it w... by NanSplk01 Communicator in Getting Data In 08-30-2023 0 0	0	0
Splunk_ta_windows: Why are Index, source, and sourceType missing from my search? Hi I have installed splunk_ta_windows using deployment server using UF on windows clients and everything is fine. I ... by yr Loves-to-Learn Everything in Getting Data In 08-29-2023 0 16	0	16
Best way to use git for source version control with our Splunk infrastructure? Hi all, I'm looking for some advice on source version control. We have a couple deployers, a deployment server, ind... by maciep Champion in Getting Data In 08-29-2023 6 9	6	9
Why is the Sourcetype Not Showing Up? So I noticed today for whatever reason that my graphs were not giving up to date information. I looked into the issue... by MollyDS Explorer in Getting Data In 08-29-2023 0 5	0	5
How to create regex for multiple lines of a field value? I want to extract numeric values into seperate field "combinedrules": ["3000039", "3000081", "958052", "973335", "XSS... by RahulMisra Engager in Getting Data In 08-29-2023 0 5	0	5
How to create a field of stats to string for search in eval? Hi splunkers Why when I do the following query if it gives me the correct data Query \| inputlookup append=t mitre_... by m0rt1f4g0 Explorer in Getting Data In 08-28-2023 0 6	0	6
Why are Armis alerts logs not parsing correctly? hi, The Armis alerts in Splunk Cloud appear to be not being parsed correctly. We do have a technology addon for armis... by AL3Z Builder in Getting Data In 08-28-2023 0 3	0	3
How to ingest excel from UF Hi, I have a excel file on a linux server at a particular path.I have created a input file to monitor this file , but... by Dayalss Engager in Getting Data In 08-28-2023 0 2	0	2
Windows log having special characters when received in HF and Indexer- Air gapped environment Hi there,we have setup splunk in airgapped environment. Windows forwarding log to HF via UF agent port 9997. HF then ... by Aleena Explorer in Getting Data In 08-28-2023 0 0	0	0
Can we setup TLS connection without private key for third party certificates. Hi Team,I would like to establish an SSL/TLS-connection with third party CA certificates between the UFs -> HFs -> in... by VK18 Explorer in Getting Data In 08-28-2023 0 2	0	2
Is there a template for SimData for Threat and Vulnerability Data Generation? Has anyone used SimData for threat and vulnerability data generation? Is there a template available somewhere?Thanks. by dpguru New Member in Getting Data In 08-25-2023 0 0	0	0
Why is parsingQueue Filling Up on UF Despite No Parsing Rules Configured? I know queue backlog troubleshooting questions are very common but I'm stumped here.I have 2 Universal Forwarders for... by SplunkMan96 Engager in Getting Data In 08-25-2023 0 0	0	0
Splunk Add-on for Microsoft Cloud Services Post Upgrade Seeing Some Issues Hi Team,We have 2 Heavy Forwarder servers in our environment (A & B) and in both the HF servers we have installed the... by anandhalagaras1 Contributor in Getting Data In 08-25-2023 0 0	0	0
Splunk Add-on for Microsoft Office 365 Post Upgrade Seeing Some Issues Hi Team,Actually we have 2 HF servers (A & B) in our environment and in both the HF servers we have installed the A... by anandhalagaras1 Contributor in Getting Data In 08-25-2023 0 0	0	0
HEC token data ingestion Can you please let me know what is the max data ingestion limit when we use hec service? by NOORULAINE Loves-to-Learn Lots in Getting Data In 08-25-2023 0 1	0	1
Error Log Flagged: The metric event is not properly structured Hi,I am using Opentelemetry to push Prometheus metrics into Splunk index with metrics data type.After pushing the met... by ericaooi Explorer in Getting Data In 08-25-2023 0 0	0	0
How to send same logs to multiple indexes in different indexers? Hi Everyone,The Requirement is to send same logs to Multiple indexers.Index name at both the indexes should be differ... by jsingh03 Loves-to-Learn in Getting Data In 08-25-2023 0 7	0	7
How to create a job to update CSV file frequently using DBXquery? Hello,How do I create a job to update CSV file frequently using DBXquery?I have a company.csv file that was created b... by LearningGuy Motivator in Getting Data In 08-24-2023 0 5	0	5
Setting up AD Monitor - New to Splunk Hi. I am new to splunk and testing it in lab right now, seeing if it will work for us. Some of the docs are a litt... by smartkid808 New Member in Getting Data In 08-24-2023 0 1	0	1
How to get DB2 and IBM WAS Metrics in Splunk? Hi Community, We are planning to collect data for DB2 and IBM WAS components in our infrastructure. We are expecting ... by Eshwar Engager in Getting Data In 08-24-2023 0 1	0	1
Why is there a Problem parsing indexes.conf and throwing an error? Hi, i restall the splunkThen i copied the old /splunk/var/ to the new /opt/splunk/But when i start splunk,i met this ... by perlish Communicator in Getting Data In 08-24-2023 1 8	1	8
Source or Sourcetype override I have sourcetype based definition in which I mentioned INDEXED_EXTRACTION=JSON. Under this sourcetype there are 10 s... by nags Engager in Getting Data In 08-24-2023 0 3	0	3
Splunk Assistance: How to create dashboards in Splunk? I am a student at Embry-Riddle Aeronautical University and i am attending MISA 532 Intgd Threat Warning Attk EIS. Our... by SplunkDummy33 New Member in Getting Data In 08-23-2023 0 1	0	1
How to install local app via rest API? Hi All, trying to install an app I have locally via API. I have tried both curl command and python script Curl Comman... by kenchansan New Member in Getting Data In 08-23-2023 0 1	0	1
How to route in two directions with restrictions on one? Hi,Here is a challenge that works partly as expected.On a HF I need to split syslog data to two different instances, ... by BDein Explorer in Getting Data In 08-23-2023 0 1	0	1