Splunk Enterprise

Community Activity

Searchheads can not pull apps from Deployer on ansible env, error 401 - We tried to implement shclustering with splunk-ansible (https://github.com/splunk/splunk-ansible) - But it is not p... by sarit_s Communicator in Splunk Enterprise 03-08-2021 0 1	0	1
Upgrade splunk 7342 on windows 2012r2 to Windows server 2019 running latest version of splunk enterprise. HiI wanted to know the best way to upgrade from Splunk 7342 running on windows server 2012r2 to windows server 2016... by mikejones Observer in Splunk Enterprise 03-08-2021 0 1	0	1
Windows Server 2019 compatibility Hello,we are uprading EoL Windows Server 2008/r2 to Windows Server 2019. What is the lowest UniversalForwarder app su... by pavelpyszko New Member in Splunk Enterprise 03-08-2021 0 1	0	1
Usage of macro in Event types in Splunk Hello Guys,Good Day!!Can anyone please help me with a question that I have. Can I use a macro in the event type in Sp... by mayankrojo Explorer in Splunk Enterprise 03-08-2021 0 1	0	1
Upgrading Splunk Enterprise and Universal Forwarders Hello All,I am looking for assistance with upgrading a single Splunk Enterprise Windows server (no cluster) that is r... by alkraw New Member in Splunk Enterprise 03-05-2021 0 1	0	1
how to give splunk user in Linux UF to read /var/log/messages.log - permission denied redhat 7created a splunk user in linux - added user to wheel group and sudoersInstalled splunk UF for linux 7.3.7.1al... by radam2000 Path Finder in Splunk Enterprise 03-05-2021 0 1	0	1
Phantom Warm-Standby Is there a way to fully automate phantom warm-standby flip? Current steps are manual and needs by ravideshmukh New Member in Splunk Enterprise 03-05-2021 0 0	0	0
splunk add shcluster-member used splunk remove shcluster-member and removed an existing cluster , then after the serachhead restart tried to add ... by Ishwarya2806 Loves-to-Learn in Splunk Enterprise 03-05-2021 0 3	0	3
Help with Stats command and total count of errors Hi, I am working an setting up a alert where I need to count if there have been more than 50 count of errors in last ... by shashank_24 Path Finder in Splunk Enterprise 03-05-2021 0 4	0	4
A script exited abnormally with exit status: 3 A search head has the following error message:Health Check: msg="A script exited abnormally with exit status: 3" inpu... by TheBravoSierra Path Finder in Splunk Enterprise 03-05-2021 0 2	0	2
How can I configure Splunk to read a csv file from a sourcetype GuysI have the following .csv file that needs to be captured by Universal Forwarder, but the data is coming in messy.... by leandromatperei Path Finder in Splunk Enterprise 03-05-2021 0 1	0	1
CMMaster - Unable to send scheduled jobs Hi everyone, i've currently deployed the following instances in my Splunk infrastructure using Splunk 8.1.0: - 1 Sear... by Rosichia Observer in Splunk Enterprise 03-05-2021 0 20	0	20
Filter condition in a timechart We have following query used for generating few dashboards. However we would like to setup an alert whenever the sum(... by akpadhi Explorer in Splunk Enterprise 03-05-2021 0 5	0	5
Regex to capture below format data Hi ,please help me with regex expression to capture the data in below part which is in bold and underlined.e+o.in_zpi... by Ashwini008 Builder in Splunk Enterprise 03-04-2021 0 4	0	4
Migration of Indexer clustering to new servers Hi All. I am working on Splunk migration project which involves moving of Splunk instances to new servers. Till now I... by dvohra Explorer in Splunk Enterprise 03-04-2021 0 6	0	6
after upgrade from splunk-7.3.1 to splunk-8.1.1 service crash HiUpgrade from splunk-7.3.1 to splunk-8.1.1 have some issue: 1-when I going to "search page" at this url http://IP:90... by indeed_2000 Motivator in Splunk Enterprise 03-04-2021 0 0	0	0
Cisco ISE -> New line in Syslog -> Splunk HiWe have Cisco ISE that sends log to our Splunk using rsyslog as a receiver for TCP Syslog.Problem are that some of ... by jotne Builder in Splunk Enterprise 03-04-2021 0 0	0	0
How to color the field value based on the value present in another field? Hi,I want to color the filename value (.i.e Account) with red color , if the value present in another fields is blank... by Ashwini008 Builder in Splunk Enterprise 03-04-2021 0 1	0	1
Does Splunk Enterprise overwrite lookups during app upgrade? Trying to understand how lookups are handled during app upgrade. If I upgrade an app, will an existing lookup be over... by sroback_splunk Splunk Employee in Splunk Enterprise 03-03-2021 0 1	0	1
joining two values on single value Hi,i have Total with me, (Table A)Name Totala 1000b 1600c ... by sompalle1 Engager in Splunk Enterprise 03-03-2021 0 3	0	3
help on X axis date truncated with a scheduled search Hello I have an issue on the X axis of my timechartAs you can see in my xml file, I use a scheduled search in order t... by jip31 Motivator in Splunk Enterprise 03-03-2021 0 5	0	5
Splunk on Docker error Moving my instance from Splunk Enterprise on vmware to a docker container. It runs okay with the volumes I created bu... by mpederson Engager in Splunk Enterprise 03-03-2021 1 0	1	0
Splunk Addon for nix Not showing the entire COMMAND name Hi all, I have deployed the splunk Addon for Nix on my Linux Server and enabled the top.sh script.The script does no... by ocgovsplunk Engager in Splunk Enterprise 03-03-2021 0 0	0	0
Student Splunk Access Hello,I was curious about Splunk access for students. As a Business Analytics student, Splunk would be very useful. M... by triddic1 New Member in Splunk Enterprise 03-03-2021 0 1	0	1
Regex Hello All, I am not so familiar with regex, but looking at some old query have been able to build one for my need. I ... by praddasg Path Finder in Splunk Enterprise 03-03-2021 0 6	0	6