Splunk Enterprise

Community Activity

I want to look for certain text and extract that field and make a report index=abc "exception":"java.util.concurrent.ExecutionException" searching above displays like these in below events "... by mikeyty07 Communicator in Splunk Enterprise 06-09-2021 0 2	0	2
Do we need to backup $SPLUNK_HOME/var/run/searchpeers on the indexers? Due to the volume of the data in $SPLUNK_HOME/var/run/searchpeers on the indexers, our SAs would like to know if this... by danielbb Motivator in Splunk Enterprise 06-09-2021 0 0	0	0
DAG Execution Exception: Search has been cancelled DAG Execution Exception: Search has been cancelled by Darkmattersalmi New Member in Splunk Enterprise 06-09-2021 0 1	0	1
Splunk Clustered Indexer data erasing We have three indexers in our cluster.We want to decommission one of the indexers but still want to search all the da... by smithke Explorer in Splunk Enterprise 06-09-2021 1 3	1	3
Bar Chart Alert Hi all!I would like to set an alert on a bar chart. The bar chart shows the number of service desk tickets per each d... by michaelsplunk1 Path Finder in Splunk Enterprise 06-09-2021 0 1	0	1
New Splunk 8.1.1 feature - Enhanced TSIDX compression is related to tsidxWritingLevel ? Hi,I have seen this new feature in Splunk 8.1.1https://docs.splunk.com/Documentation/Splunk/8.1.1/ReleaseNotes/MeetSp... by edoardo_vicendo Builder in Splunk Enterprise 06-08-2021 0 4	0	4
Add dummy row with 0 when count returns 0 HiI need to display 0 in the field "Number of index" if there is no host in this indexI tried but I have no resultsC... by jip31 Motivator in Splunk Enterprise 06-08-2021 0 6	0	6
How to check Up/Down hosts with Splunk and/or the Telegraf Agent? We are trying to verify if a server is up or down via different ways, but none seem to be working for us.We are monit... by Mark90 Explorer in Splunk Enterprise 06-07-2021 2 0	2	0
Which Splunk Enterprise user type aside from Admin can see & edit apps configurations Which Splunk Enterprise user type aside from Admin can see & edit apps configurations. by SamHTexas Builder in Splunk Enterprise 06-07-2021 0 0	0	0
Semicolon in filePath Hello,Sometimes the filePath of an action has a semicolon and a series of numbers and letters attached to the end. Fo... by 33-44 New Member in Splunk Enterprise 06-07-2021 0 1	0	1
How do I create an INDEX and dedicate it to an app in Splunk Ent. ? Is that advised to do so? How do I create an INDEX and dedicate it to an app in Splunk Ent. ? Is that advised to do so? If it is advised, how d... by SamHTexas Builder in Splunk Enterprise 06-07-2021 0 1	0	1
Custom search command avoid chunked results I have a processing Custom Search Command which needs to filter some results.I need to pass to this command all the e... by Unige2021 Loves-to-Learn in Splunk Enterprise 06-05-2021 0 0	0	0
How to find all the searches having not field parameter in the search or Alert or Reports? Hi,In our system, to prevent the high resources consumed, we would like to see all searches including "*" and without... by gulizar New Member in Splunk Enterprise 06-04-2021 0 6	0	6
HA solution for Heavy Forwarders I was wondering about a possible BCP for heavy forwarders. Currently we have 2 heavy forwarders in a single datacente... by wardak Loves-to-Learn Everything in Splunk Enterprise 06-04-2021 0 1	0	1
search query help for using lookup Hello,I am looking to use a lookup in my search query. basically in lookup, I have 2 rows for threshold and I wante... by AKG1_old1 Builder in Splunk Enterprise 06-04-2021 0 1	0	1
SSL Web Certificate Hi everyone,I have created an ssl web certificate from an online service and got 3 files:ca_bundle.crtcertificate.crt... by g_paternicola Path Finder in Splunk Enterprise 06-04-2021 0 3	0	3
Remove KVStore data after deleting collections.conf Hello,Is there a process to remove data from mongo DB when the KVStore's collections.conf and transforms.conf have be... by ohbuckeyeio Communicator in Splunk Enterprise 06-04-2021 0 8	0	8
How to know that summary index is implemented How to know that , how my summary index is implemented?. I know that only uses for implementing scheduled searches ... by anil1432 Explorer in Splunk Enterprise 06-04-2021 0 14	0	14
How to upgrade Splunk DB connect version 3.1.1 to 3.1.4? Hi,I read this article https://community.splunk.com/t5/Developing-for-Splunk-Enterprise/Splunk-DB-Connect-java-home-s... by Lucille_Dajab Engager in Splunk Enterprise 06-03-2021 0 2	0	2
Is it possible to preemptively log in a user in splunk enterprise's web server? I have a custom web app in angular where the user logs in via LDAP. The app shows splunk dashboards to the user.The p... by fralcalde Explorer in Splunk Enterprise 06-03-2021 0 0	0	0
Problem with indexer discovery on AIX using Universal Forwarder 8.1.3 Hi.I would like to know if anybode else had this issue.We upgraded our UF on AIX to 8.1.3 from 8.0.4, following the g... by las Contributor in Splunk Enterprise 06-03-2021 0 5	0	5
Different Time to Reap Knowledge Bundle Directory between search peers Hi,I have a difference between 2 search peers, both members of my indexer cluster, for the time to Reap Knowledge Bun... by francoisternois Path Finder in Splunk Enterprise 06-03-2021 0 1	0	1
xml: Check if a value is a number I need to check of the time tokens are numeric. I used to use this and it worked, but suddenly my dashboard broke. I... by weidertc Contributor in Splunk Enterprise 06-03-2021 1 1	1	1
Navigation Permissions Custom Build App Hello, I am looking to only make a few views only available to a "Role". Lets say everyone will have access to the ap... by Becherer Explorer in Splunk Enterprise 06-02-2021 0 1	0	1
how to change the color of dashboard black using emojis how to change the color of dashboard black using emojis by eldenhan_joel New Member in Splunk Enterprise 06-02-2021 0 2	0	2