| | After upgrading from 4.0.x (I don't exactly remember the version) to 4.1 in OS X 10.5.8 I get the following log /Ap... 2 3 | 2 | 3 | |
| | Do I need to configure distributed search on all the search peers? 1 2 | 1 | 2 | |
| | Is Splunk 4.1 (indexer & search) still compatible with 3.4.11 forwarders? Is so are there any features in 4.1 that w... 2 3 | 2 | 3 | |
| | I have a file that I need to index twice. Specifically, I need it sent/indexed to two different indexes. How could... 1 4 | 1 | 4 | |
| | How should I allocate space for indexes among indexing nodes? For example, lets say I have 2 groups of servers that ... 1 1 | 1 | 1 | |
| | I've been asked to look into renaming my Splunk indexer server (don't ask why). Is there a "best" or safe method for... 1 2 | 1 | 2 | |
| | I have Splunk 4.0.10 64bit version running in Windows 2008 R2 64bit. I noticed that when Splunkd service is turned o... 2 1 | 2 | 1 | |
| | I've heard there are some REST endpoints that allow you to refresh objects (such as new dashboards, nav menus, etc...... 2 3 | 2 | 3 | |
| | Hi, I just installed cisco_firewall_addon for version 4.1 of splunk and I am having some issues. I have an ASA and a ... 1 5 | 1 | 5 | |
| | Hello, System type: Linux We have splunk running on our centralized syslog-ng server. We then have other servers fo... 1 4 | 1 | 4 | |
| | Would someone confirm the following observations regarding data input configuration via inputs.conf? when using wild... 0 3 | 0 | 3 | |
| | Hi, I have syslog_ng server (sles 10). Everything is logged in this way: /var/log/HOSTS/xx-yy/hostname or ip/log fi... 0 2 | 0 | 2 | |
| | I just installed Splunk 4.1 (configured to run on system accounts) and the first thing i did was add an input monitor... 1 1 | 1 | 1 | |
| | I need to figure out what LDAP values I should be using to make auth work. 1 3 | 1 | 3 | |
| | Does anyone know if alwaysOpenFile still works in inputs.conf as of Splunk 4.1. It still shows up in the 4.1 docs, b... 1 6 | 1 | 6 | |
| | I have a file with ~6M events that gets FTP'd to Splunk on a daily basis. Unfortunately I don't have control of the ... 1 1 | 1 | 1 | |
| | What is the mechanism for federating credentials between splunk servers when doing a distributed search? 1 2 | 1 | 2 | |
| | I'd like to convert a busy server with a bunch of users from default auth to LDAP. How can I do so without losing any... 1 3 | 1 | 3 | |
| | I am using Splunk to collect data from the security logs on my network. How long does Splunk store the data that it c... 0 2 | 0 | 2 | |
| | I have an instance that I've set up to only run summary searches. Essentially, its a search head but no users connec... 0 1 | 0 | 1 | |
| | For example, does Splunk ignore server.conf, distsearch.conf, or any other conf files if they're located in an apps d... 2 2 | 2 | 2 | |
| | I just upgraded my install to 4.1 and LDAP auth is no longer working. The failsafe user is all I can use. Previousl... 5 10 | 5 | 10 | |
| | After upgrading to 4.1 no charts display any timestamps on the y axis if the displayed time range exceeds 24 hours. T... 0 2 | 0 | 2 | |
| | Under Linux Splunk 4.1, I want to install the PDF Report Server and have downloaded the app file from Splunkbase. Whe... 3 2 | 3 | 2 | |
| | In inputs.conf the default host name is set to the fqdn, test-server.foobar.com. But when I search for that host, it ... 2 5 | 2 | 5 | |
