Getting Data In

Community Activity

	Having issue with SEDCMD tests Hi community,I need help identifying where I got wrong.The following is my testing SPL:\| makeresults \| fields - _time... by DanAlexander Communicator in Getting Data In 07-15-2023 0 7	0	7
	props.conf - Issue with [] regex-like syntax I'm trying to specify a single stanza in props.conf, with FIELDALIAS and EVAL expressions, for two different sourcety... by SplunkMan96 Engager in Getting Data In 07-14-2023 0 3	0	3
	Powershell script execution issue \| INFO prior run of stanza 'ExchangeClientExperience' is still in progress. Skip this Hi all ,We have a scripted input and when its exaction started we are keep on getting "INFO prior run of stanza 'Exch... by ssuluguri Path Finder in Getting Data In 07-14-2023 0 0	0	0
	Using SEDCMD to filter events 4662 and need a regex Hi all,I need a regex to grep a few bits from the following raw data: <Event xmlns='http://schemas.microsoft.com/win/... by DanAlexander Communicator in Getting Data In 07-14-2023 0 1	0	1
	Default behavior of Splunk internal logs Hello Splunkers,Correct me if I'm wrong but it seems that when you install Splunk UF on a machine, some logs of the m... by GaetanVP Contributor in Getting Data In 07-14-2023 0 1	0	1
	TSTATS and searches that run strange I think my question is --Is the Search overall returning the SRC filed the way it does because either A there is no... by domino30 Path Finder in Getting Data In 07-13-2023 0 4	0	4
	Can't figure out how to POST a Report I'm stuck with an old Splunk system 8.1.5 and trying to move Alerts and Reports to a new system (9 something). I figu... by gerrysr6 Explorer in Getting Data In 07-13-2023 0 1	0	1
	Why did Task Server fail to start - Splunk DB Connect? Dear Community members, Splunk DB connect on my Splunk Indexer v 9.0.1 is unable to start the Task Server. Based on s... by Splunker_In_Fr Observer in Getting Data In 07-13-2023 0 3	0	3
	Certificate file path is not provided- Do I require one to install forwarders? I an creating a home test Lab with Splunk and i am was trying to install Splunk Universal Forwarder on one of my mach... by Bronx_hax New Member in Getting Data In 07-13-2023 0 1	0	1
	How to get count of success and failure? i have json input Please find the Query below: ... ... \| stats values() as by Id\| eval Status=if(match(Error,"^[... by Jasmine Path Finder in Getting Data In 07-13-2023 0 6	0	6
	Splunk universal forwarder crashing - Crashing thread: parsing Splunk universal forwarder crasheshere are crash logs:[build de405f4a7979] 2023-07-10 17:31:30Received fatal signal 1... by Splunker8 Explorer in Getting Data In 07-12-2023 0 4	0	4
	Where can I get Duo Connector app for installation? Hi All, Duo connector installation docs for splunk isn't clear for multi site cluster environment. Can anyone suggest... by VK18 Explorer in Getting Data In 07-12-2023 0 1	0	1
	Data Models User Sessions Where can I find Data model User_Sessions or is it something I need to build? If so can I get suggestions? by domino30 Path Finder in Getting Data In 07-12-2023 0 1	0	1
	SAML Object ID to Name mapping Is there a way to make the SAML Group name be human readable name of the groups as they appear in Azure instead of th... by kevingandomcar New Member in Getting Data In 07-12-2023 0 2	0	2
	Data Missing in Index Hi,In one of my index data populating and all fields and showing until i uploaded one csv file to that index. After ... by udaypulipaka Observer in Getting Data In 07-12-2023 0 1	0	1
	Splunk ExecProcessor can't find .bat script Hello,I have a simple .bat file that just performs a "dir" command to list everything in a folder. I have set the inp... by Choi_Hyun Explorer in Getting Data In 07-12-2023 0 1	0	1
	Collect Windows DNS and PowerShell logs with Splunk UF Hi Splunkers, for a customer we are preforming a migration in Windows Logs collection: as suggested by some of you in... by SplunkExplorer Contributor in Getting Data In 07-12-2023 0 4	0	4
	I can't find ubuntu sucessful authentication log Hi!i have configred ubuntu machine to send authentication log to my splunk instance using syslog.But i found just the... by splk_user Path Finder in Getting Data In 07-12-2023 0 0	0	0
	How to configure heavy forwarder to extract multivalue nested json ? I have following set up in place and I am sending events to splunk cloud from K8S cluster. I am using HF for data man... by prashant5847 Loves-to-Learn Everything in Getting Data In 07-12-2023 0 2	0	2
	How to reformat timestamp in SYSLOG _raw SYSLOG often sends the timestamp in the older format (e.g. Jul 11 14:23:32). Unfortunately, that format does not hav... by dokaas_2 Communicator in Getting Data In 07-11-2023 0 1	0	1
	help on basic question about license usage hiI have a question concerning the license volume usage if a company ingest data with an UF but also with WinRM or Sy... by jip31 Motivator in Getting Data In 07-11-2023 0 2	0	2
	Why is log time is showing 5 hours ahead of system time? The server we are monitoring log files is in EDT timezone, the indexers are in utc time zone. the problem is logs are... by sagar06 Loves-to-Learn Lots in Getting Data In 07-11-2023 0 18	0	18
	Help on Splunk indexation suddenly stopped HiSince 2 dans, our index doesnt collect any eventsThe licence volume is OKWe have rebooted the Splunk indexer but th... by jip31 Motivator in Getting Data In 07-11-2023 0 3	0	3
	Palo Alto and Splunk - queue for outage period ? Hello Splunkers,I am using the official "Palo Alto Networks Add-on for Splunk" in order to ingest Palo logs inside my... by GaetanVP Contributor in Getting Data In 07-11-2023 0 3	0	3
	Add data programmatically using REST API Hello guys,do you have example of script or curl commands using REST API to add data?There is https://docs.splunk.com... by splunkreal Motivator in Getting Data In 07-11-2023 0 2	0	2