Splunk Dev

Thread Info

Why are default values not working for Add-on Builder Configuration/Add-on Setup Parameters?

Shouldn't the "Default value" for this 'Add-on Setup Parameter' get saved in the respective conf file's default file?...

by Splunk Employee in

Data input configuration for UDP syslogs from sonicwall firewall- Is it possible to configure this with out UF?

Splunk web was working fine. We need to add our Sonicwall firewall sys logs to Splunk add data input. Guide us to con...

by Loves-to-Learn in

Is it necessary to put `shebang` on custom scripts?

Is it necessary to put `shebang` on custom Python script that will be executed by `splunk`? The reason why I ask is b...

by Builder in

How to Join indexes on common field and preserve order?

I have 2 indexes, one with server events and one with server temperature readings. The server events come in when ge...

by Explorer in

Installing Pandas in Splunk custom application

Hi all, i am creating a custom app which require PYTHON - Pandas module. Can you please let me know how i can ...

by Loves-to-Learn Lots in

How to pull Meraki Syslog into Splunk in order to monitor internal port scanning?

Hey all, I'm trying to pull in the Syslog or our Meraki MX to our on-premise Splunk Enterprise in order to monitor...

by Loves-to-Learn Lots in

Why Search Head failed to load TA Inputs page?

Hello, When I try to test TAs locally, on my single instance, the Inputs page fails to load with a 404 and the mes...

by Communicator in

Why is App Management not loading and popping up with: '<msg type="WARN">DMC is disabled</msg>?

Hi all, I applied an 14-days trail license for splunk cloud to develop an cloud app. I followed the link https://d...

by Explorer in

Having problem searching by host or sourcetype or other fields. however, I am able to search events by index name

I am able to search for events by index name, however, I am not able to find the same events if searched by hosts or ...

by Path Finder in

Why is My app update is not available for Splunk Cloud customers, but fine on Splunk Enterprise?

I uploaded a new version of my app to splunkbase. It passed validation, and I was able to update successfully from m...

by New Member in

How to search with join returns result in GUI, but not with Python SDK?

I have a search that joins an index to a .csv lookup. When I run the search for last 24 hours in the GUI, I get ~81k...

by Explorer in

Possible to expand multiple rows at the same time ?

I am trying to expand the table row with BaseRowExpansionRenderer from this tutorial: https://dev.splunk.com/enter...

by Engager in

Why do Custom command not stay local to search heads?

(Search head cluster/indexer cluster environment) I have written a custom search, using the template provi...

by Path Finder in

Can I display 2 fields of overlay on separate Y axes (Y1 axes and Y2 axes)?

I made the column chart and overlaid 2 fields as line charts. Can I display these 2 overlay fields on separate Y ...

by Explorer in

How to join two indexes by two fields?

indexA field1field2field3A11A12A13A25B14B23B32C16C27 indexB field4field5field6A13B24C15C16 I wa...

by Explorer in

Why my python Custom reporting command yields more than 1 statistics?

Hi, so for the context, I'm developing a custom reporting command that will allow running a python ML script over the...

by Observer in

Is there an add-on for the Cisco Meraki devices?

We have many Cisco Meraki devices sending data via syslog to Splunk. Is there an add-on for the Cisco Meraki devices,...

by Motivator in

How to query only stats using Spunk Java SDK

Hi Community, I'm using Splunk Java SDK in my application, this version to be exact: implementation group...

by New Member in

How to change color of particular column?

I made the column chart like this images. I want to change the color of particular column specified by field "No."...

by Explorer in

Is there a way to export a CSV file that contains a header row even if there is no results from search?

I'm using Splunk Python SDK to download a search result as a CSV file. The output file contains a header row if the...

by Loves-to-Learn Lots in

Custom Search Fails to run in distributed environment.

I have created a custom search command, using the streaming search templates provided for the splunk SDK. It is a ...

by Path Finder in

Why can I not relaunch react component on Splunk App?

Hi, I have updated a React Component on one of my Splunk Apps.However, when I now relaunch Splunk, I see no change...

by Builder in

How to disable/enable db connect inputs via REST?

I have a db connect input that I want to programatically activate and deactivate.Following some docs I came up with t...

by Explorer in

Know CSV file size before download

Using the Splunk Python SDK, is there any way to know the size of the CSV file that will be generated after streaming...

by Loves-to-Learn Lots in

How to parse Splunk XML response containing list of data items in python?

How can we extract the list of items from below code: <s:key name="read"> <s:list> <s:item>rest_poc</s:i...

by New Member in

Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.

Splunk Dev

Discussions

Why are default values not working for Add-on Builder Configuration/Add-on Setup Parameters?

Data input configuration for UDP syslogs from sonicwall firewall- Is it possible to configure this with out UF?

Is it necessary to put `shebang` on custom scripts?

How to Join indexes on common field and preserve order?

Installing Pandas in Splunk custom application

How to pull Meraki Syslog into Splunk in order to monitor internal port scanning?

Why Search Head failed to load TA Inputs page?

Why is App Management not loading and popping up with: '<msg type="WARN">DMC is disabled</msg>?

Having problem searching by host or sourcetype or other fields. however, I am able to search events by index name

Why is My app update is not available for Splunk Cloud customers, but fine on Splunk Enterprise?

How to search with join returns result in GUI, but not with Python SDK?

Possible to expand multiple rows at the same time ?

Why do Custom command not stay local to search heads?

Can I display 2 fields of overlay on separate Y axes (Y1 axes and Y2 axes)?

How to join two indexes by two fields?

Why my python Custom reporting command yields more than 1 statistics?

Is there an add-on for the Cisco Meraki devices?

How to query only stats using Spunk Java SDK

How to change color of particular column?

Is there a way to export a CSV file that contains a header row even if there is no results from search?

Custom Search Fails to run in distributed environment.

Why can I not relaunch react component on Splunk App?

How to disable/enable db connect inputs via REST?

Know CSV file size before download

How to parse Splunk XML response containing list of data items in python?

.conf25 Registration is OPEN!

Detecting Cross-Channel Fraud with Splunk

Splunk at Cisco Live 2025: Learning, Innovation, and a Little Bit of Mr. Brightside

Limit Splunk RUM coverage to a specific JS file

API call to retrieve information about a search wh...

Much needed size optimization of this app - Python...

Custom command only running a few times when getti...

Splunk JAVA SDK Version issue

Splunk Dev

Are you a member of the Splunk Community?

Discussions