Splunk Dev

Community Activity

How to create pre-actions to a custom StreamingCommand with SDK v2? Hi, I am trying to build a new custom StreamingCommand with SDK v2. I would like this command to create a unique fo... by davietch Path Finder in Splunk Dev 01-31-2019 0 6	0	6
Data Ingestion to Cluster Hi All, need help on data ingestion to cluster i was trying to ingest data to indexer cluster, built on AWS linux, cl... by raghu0463 Explorer in Splunk Dev 01-31-2019 0 3	0	3
Filter out events Windows before Indexing Hi Guys! How to create a filter to discard Windows logon events (EventID = 4624), but only when the LogonProcessName... by jfeitosa_real Path Finder in Splunk Dev 01-31-2019 0 2	0	2
Splunk http event collector log4j2 configuration <SplunkHttp name="http-inputs" url="https:/hostname/services/collector/event" token="xxxx... by shivak81 New Member in Splunk Dev 01-31-2019 0 0	0	0
My Indexer is not processing "Keep specific events and discard the rest" Hello all, I have one app that generates a lot of data and it is killing my license. We need this data for sensitive ... by GersonGarcia Path Finder in Splunk Dev 01-31-2019 0 8	0	8
[SDK Python] Where execute scripts *.py in cluster architecture (submit.py) ? Hello, My questions is about Splunk Entreprise, Clustering and Script with SDK Python. I want add some datas in some... by oxthon New Member in Splunk Dev 01-31-2019 0 1	0	1
Line Chart over _time by fieldname Hi I am trying below query to plot line chart- index=abc \|eval Time=round(endtime-starttime)\|chart values(Time) as T... by ips_mandar Builder in Splunk Dev 01-31-2019 0 8	0	8
Dendrogram chart not showing results Hi, Error "No search set " My Modified XML, - I created the Test Dahsboard in the same Custom Viz app but still it... by SathyaNarayanan Path Finder in Splunk Dev 01-31-2019 0 6	0	6
remove path from source to only show file name for file monitor input Is there a way at input time to omit the path of the file monitor to leave only the file names ? path monitored : /... by Skins Path Finder in Splunk Dev 01-31-2019 0 3	0	3
Colors for visualisation Hi, Is it documented about what the default colours are that Splunk uses for charts and other visualizations? Thank... by chrisyounger SplunkTrust in Splunk Dev 01-31-2019 0 2	0	2
Is there any effects, if ownership of savedsearches is "nobody"? I believe that if ownership is nobody, it runs as role splunk-system-user, and splunk-system-user Inherits role admin... by yutaka1005 Builder in Splunk Dev 01-31-2019 0 1	0	1
Can we send logs to Splunk via the SDK for Python? We have a client who wonders whether sending logs via the SDK for Python is an option. Any thoughts? by ddrillic Ultra Champion in Splunk Dev 01-30-2019 0 1	0	1
How to average all columns in a chart for a group of results? Here's what I'm trying to do: Imagine a search result from Splunk comes back with results: User \| Field 1 \| Field 2... by splunk_user_jk New Member in Splunk Dev 01-30-2019 0 1	0	1
is Splunk convert the time from UTC to GMT? Hi Splunker; I have kaspersky logs this logs send logs to splunk by use CEF format, when changed format to syslog fo... by abdullahalhabba Explorer in Splunk Dev 01-30-2019 0 1	0	1
Is their such a configuration as multiple indexers in an enterprise environment but not consider it a cluster? I have an environment with three search heads, three indexers, one license server (also acts as the deployer), and on... by usanasplunkadmi New Member in Splunk Dev 01-29-2019 0 1	0	1
Splunk python SDK SSL error When running a python script I keep getting the following error when trying to connect to splunk version 6.6.1: ssl.... by patelaa Explorer in Splunk Dev 01-29-2019 1 13	1	13
Why doesn't the pulldown work the first time I select a value (with a trivial Example!)? Hello, I have a really simple dashboard with a single pulldown. I notice that it never seems to take effect the firs... by ifeldshteyn Communicator in Splunk Dev 01-29-2019 0 2	0	2
hostwide component in resource_usage.log What exactly is the hostwide component in below. It is reporting the very high utilization of memory & subsequently... by stanwin Contributor in Splunk Dev 01-29-2019 0 2	0	2
How does the search header cluster change to a single search header instance? I have a single site cluster that architecture is as follows: search header cluster： 4 search head + a deployer ... by bestSplunker Contributor in Splunk Dev 01-29-2019 0 5	0	5
KV Store Help - Best approach to schedule deletion of records based on a flag set We have a KV store with below fields: _key (mapped with alert_id) Splunk_ID Can_Delete (a flag with Yes/No) KV Store... by rkadam New Member in Splunk Dev 01-28-2019 0 1	0	1
Could I know about web service of Splunk? I just started to use the Splunk and also bought annual license. But, I stuck to confirm to regularly use for sec... by sangsun0203 New Member in Splunk Dev 01-28-2019 0 0	0	0
Splunk search included in email Hello Support , Whenever the splunk alert mail is triggered , the triggered mail contains the search keyword lines t... by ppayaws Loves-to-Learn in Splunk Dev 01-28-2019 0 2	0	2
xml tags extraction Hi All, In splunk Enterprise is their any way to extract the XML tags not the xml fields . ie .for example PFB xml ... by nerelluk New Member in Splunk Dev 01-27-2019 0 1	0	1
How do i percentage for PROCESSED and STARTED on below query index=ciaudit eventname=* \| spath "EventStreamData.response.verificationStatus" \| search "EventStreamData.response.ve... by vkari New Member in Splunk Dev 01-27-2019 0 6	0	6
At least one log for two, distinct search conditions We have two jobs that run and produce a distinct log entry for each. I need to add a dashboard panel which monitors t... by techgeek_us New Member in Splunk Dev 01-26-2019 0 4	0	4