Splunk Administration

Splunk Administration
Category Activity
dantimola
Hi, Splunkers, Can someone suggest what is the best practice to integrate Citrix mcs to Splunk? Our case is, we can'...
by dantimola Communicator in Deployment Architecture 11-27-2025
0 3
0
3
ankit13
I am trying to integrate an Oracle database with Splunk using DB Connect. When I attempt to create an input in Data L...
by ankit13 Loves-to-Learn Lots in Security 11-26-2025
0 1
0
1
gteccr
Hello, We have been reported that there is an open vulnerability with openssl for SplunkUniversal Forwarder, as descr...
by gteccr Explorer in Monitoring Splunk 11-26-2025
0 7
0
7
yh
Hi,I have this unusual problem where I am trying to modify the host name in my windows log (text file ingestion) in m...
by yh Path Finder in Getting Data In 11-25-2025
0 6
0
6
hrawat
CHECK_METHOD = modtime is not working as expected due to a regression in 9.x as there is wrong calculation which will...
by hrawat Splunk Employee Splunk Employee in Knowledge Management 11-25-2025
2 2
2
2
Zombiesunday261
About defining fixed roles meaningSh should only do searchIdx should only do indexingHf should only do log ingestion ...
by Zombiesunday261 New Member in Deployment Architecture 11-20-2025
0 2
0
2
sanjai
Hi Splunkers,I’m seeing a “Percentage of small buckets is high” health warning on one of my indexers.The alert shows:...
by sanjai Communicator in Deployment Architecture 11-20-2025
0 1
0
1
smakwana
Hi,I am trying to onboard aws access logs from a S3 bucket using the Splunk Add-on for AWS installed in a Heavy Forwa...
by smakwana Explorer in Getting Data In 11-19-2025
0 3
0
3
sivaranjiniG
i have a standalone splunk machine there i am monitoring a airwatch sample logNov 13 20:48:19 AirWatch AirWatch Syslo...
by sivaranjiniG Communicator in Getting Data In 11-18-2025
0 4
0
4
R15
Hi, We recently set up (mostly) mTLS, just have a generic forwarder cert. But with the cert being deployed via an app...
by R15 Communicator in Getting Data In 11-18-2025
0 5
0
5
maheshnc
I wan to ingest data from a web application using HEC, but I don't understand where can I get the endpoint URL detail...
by maheshnc Path Finder in Getting Data In 11-18-2025
0 7
0
7
BSilva
We have a csv file that was uploaded into Splunk, with some interesting data for some Use-Cases.We would like to know...
by BSilva New Member in Getting Data In 11-17-2025
0 2
0
2
kaurinko
Hi, I am trying to establish an SSL/TLS-connection with own certificates between the UFs and the indexer. I would als...
by kaurinko Communicator in Getting Data In 11-17-2025
0 14
0
14
cmeo-bcit
Consider email headers which show all the steps involved in getting the email item from where it was sent to where it...
by cmeo-bcit Explorer in Deployment Architecture 11-16-2025
0 5
0
5
inventsekar
Hi There, As we are planning for the Bangalore Splunk Usergroup meeting around next month, if u r ready to speak(just...
by SplunkTrust SplunkTrust in Getting Data In 11-15-2025
1 0
1
0
UncleHugo
I am trying to upload logs and whenever I do the logs come out scattered.Do I have to give every colum a title e.g In...
by UncleHugo Explorer in Getting Data In 11-14-2025
0 2
0
2
grexo94
Hi all,I am trying to parse multiple nested Multimetric logs as metrics and am failing.The following source type work...
by grexo94 Engager in Getting Data In 11-14-2025
0 2
0
2
KenPaul
We looking into uberAgent to be installed on over 17000 endpoints. I'm wanting to know how many HF's would be needed ...
by KenPaul New Member in Getting Data In 11-13-2025
0 1
0
1
splunkreal
If we index JSON data from HF and want to extend TRUNCATE setting for long logs, should we also do it on (clustered) ...
by splunkreal Influencer in Getting Data In 11-13-2025
0 8
0
8
maheshnc
 Hello,we have a DMC configured on Splunk Licence Master; I need to enable all the critical resource utilization aler...
by maheshnc Path Finder in Monitoring Splunk 11-13-2025
0 1
0
1
hlarimer
I am using the metadata type=host command to alert me when a forwarder goes down and am now wanting to extend it to s...
by hlarimer Communicator in Deployment Architecture 11-12-2025
1 12
1
12
navotfk
Hi Team,We had successfully leveraged MS Teams Add-On for Splunk to collect Teams call records and user reports data ...
by navotfk Loves-to-Learn Lots in Getting Data In 11-12-2025
0 9
0
9
inventsekar
Hi Splunk Gurus, I use the "Windows DNS Analytical Custom" app for DNS logs onboarding to Splunk Cloud. on the DC sys...
by SplunkTrust SplunkTrust in Getting Data In 11-12-2025
0 2
0
2
wayne333
I know the default port with TLS is configured by placing SC4S_LISTEN_DEFAULT_TLS_PORT=6514 inside the env_file. How ...
by wayne333 Explorer in Getting Data In 11-12-2025
0 1
0
1
rwilbert
Can I use Splunk to do forensics on Microsoft Communicator and other IM platforms
by rwilbert New Member in Getting Data In 11-12-2025
0 3
0
3
Splunk Learning

Splunk has training and education options for everyone, whether it's your first or fiftieth deployment.

Get Started

Announcements
Register for Upcoming Live Tech Talks! Security, Observability, Platform and App Developer Editions are held every month.

How digitally resilient are you? Take a quick Digital Resilience Assessment to find out if you're prepared for disruption!
Get Updates on the Splunk Community!

Think Like an Architect: Introducing the Splunk Certified Cybersecurity Defense ...

In cybersecurity, defenders respond to threats. Architects design the systems that stop them.    As ...

Best Practices: Splunk auto adjust pipeline queue

When you enable autoAdjustQueue in Splunk, maxSize should be understood as the queue size Splunk starts with ...

Announcing Modern Navigation: A New Era of Splunk User Experience

We are excited to introduce the Modern Navigation feature in the Splunk Platform, available to both cloud and ...
Top Karma Authors