Splunk Enterprise

Community Activity

howto: let forwarders send events to multiple splunk infrastructures hi,scenario: elk-server has logfiles of test und prod systems. we have two separate splunk-infrastructures, test & pr... by florianzimm Engager in Splunk Enterprise 12-30-2020 0 1	0	1
Why my inputs.conf does not work ? Hi,I have a script on heavy forwarder which output a csv file in /bin I have an inputs.conf set like this : [script:/... by mah Builder in Splunk Enterprise 12-30-2020 0 0	0	0
Lab submission Issue Though I've completed my lab exercise it is still showing IN progress. I'm unable to get certificate due to this. Ple... by tezvinay New Member in Splunk Enterprise 12-29-2020 0 0	0	0
Restricting date range in data from inputlookup My goal is to make a report that has running total (cumulative) data across years. Current year data is queried from ... by hollybross1219 Path Finder in Splunk Enterprise 12-29-2020 0 1	0	1
Securing SPlunk servers Greetings All !!Hope you are doing well,I need your guidance/advice on the best way to implement zero trust security ... by pacifikn Communicator in Splunk Enterprise 12-29-2020 0 3	0	3
Splunk Time Conversion Morning Team,Currently looking at trying to convert what i think is 10 digit Unix/Epoc time into a human readable for... by OiskyPoisky Explorer in Splunk Enterprise 12-29-2020 0 2	0	2
anyone have the pdf Splunk Dist Search Distributed Search? Good afternoonI'm looking for this pdf, does anyone know where I can download it from?Regards. by efaundez Path Finder in Splunk Enterprise 12-28-2020 0 1	0	1
tsidxWritingLevel field is empty when calling Splunk REST API Splunk version: 8.1.1OS: CentOS 7.9My indexes.conf file looks like this: [default] tsidxWritingLevel = 4 [mynewindex... by Dominik_K Loves-to-Learn Lots in Splunk Enterprise 12-28-2020 0 1	0	1
How to hide index data from users searches HiI would like to make specific index data invisible for all searches but not to actually delete it from the indexer... by rayar Contributor in Splunk Enterprise 12-28-2020 0 3	0	3
Edit an alert Splunkers,I created a simple alert and now I want to go back and edit the search. Within the ALERTS, I find the aler... by iherb_0718 Path Finder in Splunk Enterprise 12-27-2020 0 1	0	1
Detect License How to detect Trust license, when اینترنت connection is not available?Do you Know How detect Share license of Crack t... by kaazemi New Member in Splunk Enterprise 12-27-2020 0 1	0	1
splunk spl - exclude multiple values Hello I have this query that works to exclude IP 5.5.5.5 from the list.index=blah event.ts_detail=blahblah event.sr... by iherb_0718 Path Finder in Splunk Enterprise 12-27-2020 0 1	0	1
Splunk web server fails to load when using Internal certificate I'm trying to configure SSL encryption for my Splunk Light VM instance. Here is my web.conf file: [settings] enable... by Willman42 Explorer in Splunk Enterprise 12-24-2020 0 7	0	7
Need 32-bit Universal Forwarder for Debian OS We are looking for 32-bit version of Splunk UF agent for Debian OS, which we did not find in the Splunk portal.Is th... by sanju2408de Explorer in Splunk Enterprise 12-23-2020 0 0	0	0
HTTP event collector: Channel identifiers, what do they identify Quote from event collector docs: Channels are designed so that you assign a unique channel to each client that send... by mneergaa Engager in Splunk Enterprise 12-23-2020 2 5	2	5
Splunk can't get data from remote machines Dear All,Greetings!! I need your help, Splunk server for log collector x.x.x.x port=y can't receive data from all sy... by pacifikn Communicator in Splunk Enterprise 12-22-2020 0 7	0	7
How to restart udp port 514 when it is not listening? Greetings!! How to restart udp port 514 that is configured on public ip x.x.x.x all the syslogs sender are configured... by pacifikn Communicator in Splunk Enterprise 12-22-2020 0 1	0	1
Forwarder Upgrade 2012 I am running Splunk 7.32 preparing to upgrade to Splunk 8.1.1 so I know I need to upgrade my forwarder's, before movi... by SirDrake7 Explorer in Splunk Enterprise 12-22-2020 0 2	0	2
restarting Splunk forwarder on Linux Hello the issue I am having is with the following command: ./splunk restart When I try to restart I get the followi... by splunktrainingu Communicator in Splunk Enterprise 12-21-2020 0 1	0	1
Collect SCOM Custom Performance Data with Splunk Hi All,Currently, We have installed Splunk Add-on for Microsoft SCOM and Enabled Default "Performance" Template. SCOM... by mnachiappan80 Observer in Splunk Enterprise 12-21-2020 0 0	0	0
How to dedup values that reoccur within a certain time window (10 seconds)? I want to remove alarms that reoccur within 10 seconds. How do I do this? Time ; Alarm_Text 01:00:00 ALARM1 01:01:0... by Rich_Garnett New Member in Splunk Enterprise 12-20-2020 0 2	0	2
LDAP configuration is getting disconnected HiI have a working Splunk 7.3.4 , for few last days I noticed that there are issues in LDAP connection settingsLDAP r... by rayar Contributor in Splunk Enterprise 12-20-2020 0 0	0	0
create a field from regex Hello,From my system I recive number of events, some of them contain a value of the letter 'c' and then 7 digits like... by omershira Explorer in Splunk Enterprise 12-20-2020 0 2	0	2
Detect Golden ticket attack using SPL? Has anyone had experience to detect Golden ticket attack using SPL? by BenzSann Splunk Employee in Splunk Enterprise 12-18-2020 0 1	0	1
What is the best pricing option for a very small network Hi,We are setting up a very small network:- 25 desktops-15 servers (Windows and Linux)- 1 NAS- 4 network devicesThe n... by jmerette New Member in Splunk Enterprise 12-18-2020 0 4	0	4