Splunk Enterprise

Community Activity

How to get SharePoint online list data to Splunk Enterprise? can anyone share me how to get data from SharePoint Online List to Splunk Enterprise. I have to get user custom actio... by Fingent Observer in Splunk Enterprise 10-25-2025 0 3	0	3
Search head taking too much CPU, slowing down machine Hello,My installation is the following: a cluster of three search head and three indexer all set on different server ... by Florent Observer in Splunk Enterprise 10-23-2025 0 3	0	3
Issue with notable index retention kept for 180 days but saving logs for 90 days Dear,The issue with the notable index, we have configured the notable index with 18 mnths retention period and also m... by Mohammed123 Loves-to-Learn Everything in Splunk Enterprise 10-22-2025 0 3	0	3
Sysmon events not being parsed — stuck as xmlwineventlog even with TA-microsoft-sysmon installed As i am struggling to solve this issue since 3 days. Need help in solving this ASAP, tried everything used GenAI tool... by GuruDayal Engager in Splunk Enterprise 10-22-2025 0 5	0	5
Splunk shows only 9 months (270 days) data- How do I increase the retention period? Hi Everyone, I got a strange issue and unable to find a fix. All the indexes have a longer retention period but the o... by spodda01da Path Finder in Splunk Enterprise 10-21-2025 0 12	0	12
Splunk Enterprise MCP Access & Hosting Has anyone successfully deployed MCP server with Splunk Enterprise in a production environment?If so how would you ha... by Narendra_Rao Loves-to-Learn Lots in Splunk Enterprise 10-21-2025 0 2	0	2
Universal Forwarder Central Upgrade Server Hi all.I really did never understand WHY Splunk Developments never take in mind to develop a Central Upgrader/Downgra... by verbal_666 Builder in Splunk Enterprise 10-21-2025 0 13	0	13
Getting data in Hi,I have a scenario where the heavy forwarder queue gets filled and data doesn't appear quickly in Splunk when the i... by _pravin Contributor in Splunk Enterprise 10-20-2025 0 2	0	2
Typo Found in "Edit server Classes" page in Splunk 10.0.1 (Server Class Management) Hi Splunk Community,I found a minor typo on the "Edit server Classes" page in Splunk Enterprise version 10.0.1.Locati... by mtc9003 Loves-to-Learn in Splunk Enterprise 10-20-2025 0 2	0	2
Why is there Forwarder Ingestion Latency Error? I have splunk instance with 9.0.3 version and my splunk keeps throwing error in Forwarder Ingestion Latency with Root... by nz_021 Explorer in Splunk Enterprise 10-18-2025 0 5	0	5
Deploying DB Connect in a search head cluster. I have a splunk distributed system with 3 indexers, 3 search heads, a manger, and 2 heavy forwarders. I am attemptin... by cdevoe57 Path Finder in Splunk Enterprise 10-16-2025 0 4	0	4
issue on splunk deployment server forwarder manager hi , in my company we are using splunk enterprise in cluster struct , i recently update my servers not splunk after t... by julianaa85 New Member in Splunk Enterprise 10-15-2025 0 1	0	1
Lock Lab Hello good afternoon, I am working on my lab. I tried to login, but this is what I am seeing. Can anybody help me?For... by Justina New Member in Splunk Enterprise 10-15-2025 0 1	0	1
Splunk Forwarder not sending data from domain controller server Hi ,I want to sent the application, system and security logs from the domain controller server to the main Splunk ser... by ITGSOC Engager in Splunk Enterprise 10-14-2025 0 3	0	3
Why cliVerifyServerName failing because Splunk starts as 127.0.0.1? Hi, I want to run the command "splunk reload deploy-server" on my deployment server, but it fails with the following ... by yaye Explorer in Splunk Enterprise 10-13-2025 0 8	0	8
splunk reload deployment server error Hi, just want to ask why im getting this error and how to make this right : An error occurred: Could not create Splu... by jadengoho Builder in Splunk Enterprise 10-13-2025 0 10	0	10
Incremental increase in memory usage I installed Splunk Add-on for Google Cloud Platform and set it up like this, and it keeps increasing until the memory... by khj Explorer in Splunk Enterprise 10-13-2025 0 1	0	1
Remove datamodel summary from indexers We see around 100GB of datamodel_summary piled up on our cluster indexers from palo alto logs. We have now reduced th... by viku7474 Explorer in Splunk Enterprise 10-12-2025 0 2	0	2
Lost My Splunk Enterprise Trial After Changing to Free Version Dear Splunk Support Team,I recently activated a Splunk Enterprise Free Trial on my account, but while exploring the s... by MIAS07 Engager in Splunk Enterprise 10-12-2025 1 3	1	3
Splunk UI is glithcy Hi Splunkers,I have this problem with one of the Splunk instances, where the 'navbar' or the 'edit, export' button do... by _pravin Contributor in Splunk Enterprise 10-12-2025 0 5	0	5
Help getting into Local event log collection -I downloaded Splunk enterprise on my windows. I set it up and then i go into settings -> data inputs -> Local event ... by Divinstar Explorer in Splunk Enterprise 10-11-2025 0 4	0	4
Can i have overlap on a Multi-series graph Hi I have the following graph.It has an Area chart(s) and overlays(s). (In the image it has 2 but it can have more)Wh... by robertlynch2020 Influencer in Splunk Enterprise 10-08-2025 0 2	0	2
Enforcing TLS v 1.3 on AWS Is there a way to enforce/enable TLS 1.3 on Splunk HEC traffic?I am looking to enforce TLS 1.3 on Splunk Enterprise d... by lwray21 Engager in Splunk Enterprise 10-08-2025 0 2	0	2
Option to rerun expired results_link ? When alerting sends the $results_link$ token, the link expires relatively quickly, and as the owner of the alert when... by jwv Explorer in Splunk Enterprise 10-08-2025 0 2	0	2
Upgrade from Splunk Enterprise 9.2.x to 9.3 or 9.4? My environment is currently on the Splunk Enterprise 9.2.x track and support will end on Jan 31 2026. I wish to upgr... by SplunkNinja Path Finder in Splunk Enterprise 10-06-2025 0 2	0	2