Getting Data In

Community Activity

	Can we use DB connect to send Azure Database Logs to Splunk? Hi Team, I wanted to check my SQL database server is hosted on azure. Is there a way to onboard logs to splunk. Can... by umesh Path Finder in Getting Data In 06-26-2023 0 3	0	3
	Splunk logs visible after 5hrs:30 mins in splunk UI- What could be wrong here? Splunk logs visible after 5hrs:30 mins in splunk UI for example , if I have to see the log of 13:00 to 14:00 , in UI ... by Yashprime07 Explorer in Getting Data In 06-26-2023 0 11	0	11
	Log file is importing: How to parse the event? I am getting the log file imported to Splunk, but each line is an event with no field name. Can I break up the line ... by richtate Path Finder in Getting Data In 06-26-2023 0 4	0	4
	HF no longer send internal to SC after change outputs.conf: need indeAndForward? Hi Splunkers, on one Splunk Environment I follow we implemented the filtering and route strategy. As described in ano... by SplunkExplorer Contributor in Getting Data In 06-26-2023 0 8	0	8
	SEDCMD not doing what I expect- Fields that end with \" having issues? We have an issue with pan:threat in our dev environment having fields that end like this \”, What this does is escape... by jwhughes58 Contributor in Getting Data In 06-24-2023 0 9	0	9
	Why did syslog stopped sending logs to indexer? Hello, I have a syslog server that collects logs from various hosts, (esxi). The syslog is currently receiving the l... by Lwoods Path Finder in Getting Data In 06-22-2023 0 6	0	6
	For Splunk API requests, are authentication tokens needed? Hello I was reading about making requests to the Splunk API. When I was reading this link below and when making a req... by asmyth1995 Explorer in Getting Data In 06-22-2023 0 4	0	4
	Why Troubleshooting Armis add-on in Splunk IDM not raising alerts after update? Hi,We recently updated the technology add-on for Armis in Splunk IDM, but after the update, it's no longer generating... by AL3Z Builder in Getting Data In 06-22-2023 0 0	0	0
	Splunk OTEL Collector: Log Scarping Issue Dear Team,We have configured the Splunk OTEL collector to collect logs from OpenShift environment namespaces and Pods... by vprasadeee_7 Explorer in Getting Data In 06-22-2023 0 0	0	0
	Need help on Rex Please: How to extract the below events? Hi, I need to extract the below events i tried this \| rex "URI\s(?<URI>.+?)=" but not working. i want to extract ... by kc_prane Communicator in Getting Data In 06-21-2023 0 3	0	3
	Log file is monitored, but all lines are one event in Splunk? I have a log file that Splunk is monitoring. The problem is, I think, that a custom python script runs and outputs t... by richtate Path Finder in Getting Data In 06-21-2023 0 4	0	4
	Stack deployment failed. See the Account Establishment Details section for more details. Create_Failed: The following resource(s) failed to create: SplunkDMCtrailCWLogSubscriptionFilterCustomResource. We a... by jckline1 New Member in Getting Data In 06-21-2023 0 1	0	1
	How to achieve regex to keep the highlighted parts from the below raw log and remove the rest using SEDCMD? Hello community, I am looking for a regex to keep the highlighted parts from the below raw log and remove the rest u... by DanAlexander Communicator in Getting Data In 06-21-2023 0 4	0	4
	Why is there constant memory growth with Search Head and Universal Forwarder? Installed Universal forwarder and no inputs are added yet, still gradual memory growth.Why there is constant memory g... by hrawat Splunk Employee in Getting Data In 06-20-2023 0 7	0	7
	How to replace \\ with \? Hi, I am trying to use a lookup to whitelist/exclude some values from search results such as process_name. But whene... by adespino Explorer in Getting Data In 06-20-2023 0 3	0	3
	How to install UF via GPO? Hi Team, How to install UF via GPO?Any specific command line to run the file .msi that use our username and password... by ask Engager in Getting Data In 06-20-2023 0 5	0	5
	Why is Windows Logs with Event Code 4625 Not appearing in Splunk Instance? Hi, I'm experiencing an issue where logs with EventCode=4625 from Windows systems (an account failed to log on) are n... by splk_user Path Finder in Getting Data In 06-20-2023 0 10	0	10
	Splunk Not Monitoring File Hi There,I am attempting to ingest data from the WindowsUpdateLog using the Splunk Windows TA. I have attached a scre... by jamie1 Communicator in Getting Data In 06-20-2023 0 1	0	1
	Custom WinEvent in Splunk- Can't see logs in Splunk? Hi Team, I'm onboarding custom winevents to Splunk [WinEventLog://Microsoft-Windows-TerminalServices-RemoteConnection... by vikramauto New Member in Getting Data In 06-20-2023 0 2	0	2
	How do I FULLY uninstall Splunk Universal Forwarder I'm running Splunk Universal Forwarder with a Splunk Enterprise deployment. On a new install, all information is popu... by cutright_jm New Member in Getting Data In 06-20-2023 0 4	0	4
	Why is uploaded data missing? Hi, I am new to splunk and trying to upload data for practising. I amd using the data from the the below link. https:... by suvi1611 New Member in Getting Data In 06-19-2023 0 2	0	2
	What Splunk sourcetype is used for GCP Firewall logs, so that GCP TA is satisfied by it? I am ingesting data into Splunk Cloud using Cribl (not directly via GCP Add On) and using Google Cloud TA on the sear... by juulengineer Engager in Getting Data In 06-19-2023 0 0	0	0
	Any idea why the timestamp of data that send via logstash, change when stored in Splunk index? Hitimestamp of data that send via logstash change when store in splunk index. what is the reason? index="influx2splun... by indeed_2000 Motivator in Getting Data In 06-19-2023 0 7	0	7
	How to set workload management rules? Hi, I'm trying to set 2 rules in my workload management pool - search_type=adhoc AND runtime>1m -> Move search to alt... by saleshai Explorer in Getting Data In 06-18-2023 0 2	0	2
	Why is spath returning duplicate value for fields? Hi I'm trying to use spath to break doen json log, but it duplicates these two fields "time" and "@timestamp" when I ... by indeed_2000 Motivator in Getting Data In 06-18-2023 0 1	0	1