Splunk Enterprise

Community Activity

How do I create alert for load balancing on hosts Hi, I want to create an alert to check the traffic on my tomcat servers and triggers it based on the count or percent... by shashank_24 Path Finder in Splunk Enterprise 06-29-2020 0 2	0	2
Searching and Alert in Monitoring Console I'm new to Splunk Enterprise, I did some searching and reporting for file log data, and from them, I implemented aler... by mathiasy123 Path Finder in Splunk Enterprise 06-29-2020 0 11	0	11
How can I get unique events/results every time alert matches conditions ? Hi,Suppose I have an alert, whenever that alert will trigger it should return a unique result only, I don't want thos... by admin12345678 Path Finder in Splunk Enterprise 06-28-2020 0 2	0	2
Field extraction, string after last colon I have log file like this,want with regex extract everything after last colon in each lineinput:2020-06-28 15:03:32,7... by indeed_2000 Motivator in Splunk Enterprise 06-28-2020 0 1	0	1
regex everything after last colon in each line I have log file like this,want regex everything after last colon in each lineinput:2020-06-28 15:03:32,710 ERROR In--... by indeed_2000 Motivator in Splunk Enterprise 06-28-2020 0 3	0	3
How to get the latest version of a lookup file Hi, I have a SQL job that exports a .csv table to our file server with one column of user names in the file. This job... by yossefn Path Finder in Splunk Enterprise 06-28-2020 0 2	0	2
How can I run the same search "looping" through a series of different URI group inputs? Hello,I am running Splunk 7.1.4 om AMI Linux, splunk web from Windows 10 desktop. I am trying to create a report that... by peters49 Explorer in Splunk Enterprise 06-27-2020 0 11	0	11
Splunk not starting when $SPLUNK_DB changed I have encountered a problem where I cannot get the Splunk service to start after changing The $SPLUNK_DB variable in... by diligentpenguin Explorer in Splunk Enterprise 06-26-2020 0 4	0	4
Managing .conf files with Azure DevOps As anyone had anyone had luck automating the management of the conf files for the deployment app using Azure DevOps? by cboillot Contributor in Splunk Enterprise 06-26-2020 0 0	0	0
License error Hello. In the past few days i've been having an issue with my searches on my Splunk. I have an instance on which I co... by franciscof Explorer in Splunk Enterprise 06-26-2020 0 1	0	1
modify/update limits.conf on indexer cluster Hello,I have to update the $SPLUNK_HOME/etc/system/local/limits.conf of clustered indexer, with new parameters.I'll h... by warmup031 Explorer in Splunk Enterprise 06-26-2020 0 1	0	1
splunk.key file in mongo was deleted by mistake One of the system admins renewed the certificate and thought they needed to delete the splunk.key file in the mongo f... by lukessi Path Finder in Splunk Enterprise 06-26-2020 0 0	0	0
Capture Status Change I have data like this:Status EndTime StartTimePending 25-06-2020 24-06-2020Pending... by vishaltaneja070 Motivator in Splunk Enterprise 06-25-2020 0 1	0	1
Spacify User Apps I have one requirement we need to give cretin users access only to windows app ans search app my question what is the... by khalidewaidah Explorer in Splunk Enterprise 06-25-2020 0 0	0	0
How to easily copy alerts to another instance? Using Splunk Enterprise (currently 7.3.x here); I'm not an admin, so cannot see/change "savedsearches.conf".I have ov... by larrywest Explorer in Splunk Enterprise 06-25-2020 1 2	1	2
Unable to plot the duration by jobname!! I am using the following query to get the average duration for certain Jobs. I want to have a visualization on a dail... by chinmay25 Path Finder in Splunk Enterprise 06-25-2020 0 2	0	2
Upgradation of Splunk Add-on for Symantec Endpoint Protection Hi All,Currently we are using 1.0.3 but we want to update to its latest version.What are the steps do we need to foll... by rahul2gupta Path Finder in Splunk Enterprise 06-25-2020 0 1	0	1
Am i guaranteed to get Splunk software updates if i have a perpetual license hey guys,am i guaranteed to get splunk software updates if i have a perpetual license? (bought several years ago)i do... by highsplunker Contributor in Splunk Enterprise 06-25-2020 0 5	0	5
how to get one of the fields by searching multiple indexes without using OR example i have multiple indexes like index1, index2, index3. amoung these a field named "Category" presents in index2... by sivaranjiniG Communicator in Splunk Enterprise 06-25-2020 0 0	0	0
How to pass latest time in a drill down Hi,I am facing a problem while passing latest value to drill down form, So when I click on each row i want the drill ... by james_n Path Finder in Splunk Enterprise 06-25-2020 0 0	0	0
Issue with Sequence of Operation Hello Everyone,Today i observed a weird behavior while using eval and kvstore lookup file, below is my case:My query ... by bharathkumarnec Contributor in Splunk Enterprise 06-24-2020 0 2	0	2
Splunk Enterprise Installation error. I am facing issues while installing Splunk Enterprise splunk-8.0.4.1-ab7a85abaa98-x64-release where it is rolling bac... by sonapurkayastha New Member in Splunk Enterprise 06-24-2020 0 1	0	1
eval if field value is same in two different events HelloHow can I return results, for all events, where a field value is the same in two of those events. For example, o... by user93 Communicator in Splunk Enterprise 06-24-2020 0 4	0	4
how to anonymize specific variables data from JSON File Hi,I want to mask just specific values. This is an example of a json event return in splunk :{"MemorySize": 256, "reg... by mah Builder in Splunk Enterprise 06-24-2020 0 12	0	12
How to count dates of a field that are over now() and Values with no entry? I have a CSV that looks like the following: OrganizationSystem Scan Due Date ABCJack7-Feb-21 ABCJill9-May-20 123BobU... by UMDTERPS Communicator in Splunk Enterprise 06-24-2020 0 5	0	5