No Notables is getting generated however i can get...

saurabhsumangat · ‎05-02-2019

Since morning i am observing my notables are not getting created.
I can see the Notable names in Security posture but once i click on that it doesnt show any results.

when i copy paste the same search on searching and run manually it gives proper results.

What all are the checklist i need to check for this issue?

DavidHourani · ‎05-02-2019

Hi @saurabhsumangate,

Is this happening to all your notables ? Or only new ones that you have created ? Also did you check over which time you're running the search ? It could be that you're just on the wrong timeframe.

saurabhsumangat · ‎05-02-2019

Hey David,

This is happening to all the notables which used to generate earlier

DavidHourani · ‎05-02-2019

Could be a cookie issue, could you try clearing your browser's cache ?

saurabhsumangat · ‎05-02-2019

This has been resolved automatically.
Do you have any idea, what could be the reason for this behavior?

DavidHourani · ‎05-02-2019

it's most probably a browser incompatibility issue.. I've seen it happen with IE and Edge. When results don't show but you know they are there first step should be clearing the cache and logging back in 🙂

saurabhsumangat · ‎05-02-2019

sure.. i ll try it again later

saurabhsumangat · ‎05-02-2019

but my Notable graph in incident review has shown no spikes during a certain interval of time.. is it still related to browser compatibility?

DavidHourani · ‎05-02-2019

check the search building the graph, if when you run the search you have nothing at all then that means your correlation searches had stopped, if you do get results it's just a display issue

No Notables is getting generated however i can get the results when correlation searches are run mannually

Introducing the 2024 SplunkTrust!

Introducing the 2024 Splunk MVPs!

Splunk Custom Visualizations App End of Life