Knowledge Management

Community Activity

Re-arranging Apps menu in Splunk 9.2.x In previous versions of Splunk (at least up to 9.1.0), we could re-arrange the Apps menu by dragging the apps up or d... by DaClyde Contributor in Knowledge Management 10-21-2024 1 7	1	7
How to Optimize Splunk Query to Avoid Join and Retain All Metrics with xyseries? Hi everyone, I'm working on a Splunk query to analyze API request metrics, and I want to avoid using a join as it is ... by ravimishrabglr Explorer in Knowledge Management 10-21-2024 0 1	0	1
Extract backslash separated field to multiple field ? HI Can someone please help me to extract the multiple fields from a single backslash separated field using rex comman... by Real_captain Path Finder in Knowledge Management 10-10-2024 0 5	0	5
SymmKey issue i am getting this error below regarding pass4SymmKeyWARN HTTPAuthManager [1045 MainThread] - pass4SymmKey length is t... by splukiee Loves-to-Learn in Knowledge Management 10-01-2024 0 9	0	9
Displaying Blank Using Data Models Hi I have data that looks like below, as you can see some parts have blanks. Date \| Time \| UserName \|iD ... by robertlynch2020 Influencer in Knowledge Management 09-25-2024 1 4	1	4
Classic Dashboard Input Dynamic Options Imagine, if you will, table view lookup that has been setup to pull the Host name, the environment (Dev/Test/Prod) an... by texascj Path Finder in Knowledge Management 09-19-2024 0 11	0	11
Summary index not showing in drop down Hi Team, We have to create the Summary index , as per process we have created an index called si_test in indexes.co... by rohitvjoshi Path Finder in Knowledge Management 09-13-2024 0 4	0	4
KV Store overwrite failing (append=false) Hello, It's not the first time that I notice this issue, but I cannot find a workaround this time. I'm trying to ove... by olivier_ma Explorer in Knowledge Management 09-11-2024 0 5	0	5
"Fatal thread error: pthread_mutex_lock: " when persistent queue enabled. Crashing thread: typing Heavy forwarder or indexer crashes with FATAL error on typing thread. Note: Issue is now fixed for next 9.2.2/9.1.5/9... by hrawat Splunk Employee in Knowledge Management 09-11-2024 4 9	4	9
How to set the timestamp when using the collect command? I am searching yesterday's data and trying to insert it into an index for reporting purposes. I need to take multiple... by regriffith Path Finder in Knowledge Management 09-03-2024 2 8	2	8
Is it possible to take splunk Admin certification after Splunk power user certification expired? Is it possible to take splunk Admin certification after Splunk power user certification expired? by glingaraj Explorer in Knowledge Management 09-01-2024 0 7	0	7
CSV Field indexing Hello,I have a CSV file that I monitor via the Universal Forwarder (UF). I’m encountering an issue where sometimes I ... by TISKAR Builder in Knowledge Management 08-29-2024 0 3	0	3
Need help on rex We have json logs, from the below logs we need to get the rex for the failures count which is mentioned in the logs l... by Ram2 Explorer in Knowledge Management 08-27-2024 0 4	0	4
Select Entitlement combo empty when trying to create a case at official support HiI am trying to create a case at your official support.Our user is "unionub".Required Input field "Select Entitlemen... by altink Builder in Knowledge Management 08-26-2024 0 3	0	3
Unable to load dashboard. Please reload the page to try again. Hi,For a few days now, my Splunk Dashboard shortcut has been displaying an error when I connect with the administrato... by Elbald97 Explorer in Knowledge Management 08-22-2024 0 4	0	4
How to get the mapping relationship between data models and indexes? Hello Guys,I wonder if there's any query that can list the mapping information between the existing data models and ... by Iris_Pi Path Finder in Knowledge Management 08-21-2024 0 1	0	1
What does restart background jobs do? Is this a per profile basis?Per cluster basis?how does this restart back? by moistpot Explorer in Knowledge Management 08-21-2024 0 2	0	2
Indexes not saving past 2 weeks. I want to start of by saying I am extremely new to splunk, so please bear with me, I'm not sure at all if I'm on the ... by JJE Loves-to-Learn in Knowledge Management 08-15-2024 0 9	0	9
Calling Custom Commands and returning data to an Eval I have a custom command that calls a script for nslookup and returns the data to splunk. All of it is working but I w... by jdhart1312 Loves-to-Learn Everything in Knowledge Management 08-14-2024 0 8	0	8
19 digit epoch time not being honored I have a field called eventtime in my logs, but the time is 19 characters long in epoch time (which goes to nanosecon... by jtm7x2 Explorer in Knowledge Management 08-13-2024 0 1	0	1
SmartStore Eviction Failure Hello,I am experiencing a periodic issue with smartstore where a bucket will try to be evicted then proceeds to fail ... by dersonje2 Engager in Knowledge Management 08-12-2024 0 1	0	1
Error installing Splunk 9.3 on RHEL 8 server Hello!I am trying to upgrade to the latest version of Splunk Enterprise 9.3 on a RHEL 8 server, but I am getting this... by jmrubio Path Finder in Knowledge Management 08-12-2024 0 2	0	2
Kvstore Status:failed Hi all,Please help. I have a AIO Splunk Enterprise Ver: 8.1.2 setup running on windows server, i have done the follow... by Spinner79 Explorer in Knowledge Management 08-12-2024 0 5	0	5
How to append on existing gz lookup file without temporary file Hi Team,I have many(10+) large csv lookup files (200MB) being referred in multiple places. To improve optimisation, m... by shanmu New Member in Knowledge Management 08-09-2024 0 1	0	1
Fields using regular expressions I would like to automatically extract fields using props.conf.When there is a pattern like the one below, what I want... by silverKi Path Finder in Knowledge Management 08-08-2024 0 7	0	7