Splunk Enterprise

Discussions

Thread Info

What is this Azure SAML request error AADSTS7500529?

Hi all, I'm configuring Splunk (Docker image 8.1.0) to make SAML authentication on Azure ADFS. Despite all look...

by Explorer in

How to Migrate to wiredTiger on Windows Server?

I followed the steps under "Migrate the KV store after an upgrade to Splunk Enterprise 8.1 or higher in a single-inst...

by Explorer in

Unusual behaviour identified in SPL

Hi Community, I have an SPL query that runs from a savedsearch in Splunk Enterprise. When I run the query I am able...

by Path Finder in

Why is Splunk ingesting additional information from the source, when there is no actual data present in the source ?

Hi All, We have concern raised by one of our application team as they could see incorrect data in their dashboard, W...

by Motivator in

Whats the major difference between splunk 8.2.4 and splunk 8.2.6?

Hello, Whats the major difference between splunk 8.2.4 and splunk 8.2.6?

by New Member in

How to create a search that will compare results from search with lookup?

Hello everyone! I have in search results table like A=1, B=1, C=3 I have lookup like TypeABCserver1114server...

by Communicator in

How to export Splunk data to CSV file using Javascript

Hi All, I am using Javascript file to export splunk data from dashboard to CSV file. Issue I am facing is : for f...

by Path Finder in

How to fix Splunk indexers max volume size exceeded?

Hello I have 5 indexers managed by Cluster Master. On the indexes.conf (located as master-app) I have the ...

by Explorer in

SNMP modular input / MIBS

Hello Guys.We use SNMP Modular input to poll data from the devices. We use CISCO, added CISCO MIBs, then added IF-Mib...

by Loves-to-Learn Everything in

How to Extract Fields from raw events with regex

Need to extract fields from the below raw data currently no fields automatically extracted. Raw Event:Server: auto...

by Engager in

Getting error while configuring DCN in Splunk add-on for VMware metrics

In Splunk add-on for VMware metrics configuration page, I get DCN Credential Validation as "invalid" after giving my ...

by New Member in

What are best practices for data duplication, ingesting Crowdstrike vs. UF (Windows)?

Hello. Good afternoon. Looking for some best practices here. Over the years, we have been using the UF to ingest...

by Path Finder in

2 Search Deployer: Can one act as master and one as backup server that replaces master in case of its failure?

Hello, i have a customer that wants to create a Search Head Cluster. He has deployed me 4 Search Heads and 2 Se...

by Explorer in

Is parallelIngestionPipelines working in 8.1.9?

Hi I have read that parallelIngestionPipelines is not working in 8.1, however, that post was old, so I am not su...

by Motivator in

How to fix this error in health?

Ingestion Latency Root Cause(s): Events from tracker.log have not been seen for the last 74130 seconds, whic...

by Engager in

Help creating search to retrieve the results of the sum of Pb + Pb2 + Pb3 classed by name and town

hello At the end of this subsearch I would like to be able to retrieve the results of the sum of Pb + Pb2 + Pb3 cl...

by Motivator in

How to get SCOM data to Splunk without Windows Server?

My company does not have a Windows Server with Splunk Enterprise so I cannot use the Splunk Add-on for SCOM to ingest...

by New Member in

Is there a way to set up a multi-domain certificate and a wildcard certificate?

Hi all Is there a way to set up a multi-domain certificate and a wildcard certificate? if yes then can anyone t...

by Path Finder in

Why after switching from HF to UF, MSWindows:2012:IIS event no longer parses correctly?

Hello colleagues. we recently switched from Splunk HF to UF. before this event with sourcetype = MSWindows:2012:IIS. ...

by Communicator in

How to check which user is downloading which dashboard?

hi all, i have multiple users and multiple dashboard studio. i want to check which user is downloading which da...

by Path Finder in

Get Updates on the Splunk Community!

Splunk Enterprise

Discussions

What is this Azure SAML request error AADSTS7500529?

How to Migrate to wiredTiger on Windows Server?

Unusual behaviour identified in SPL

Why is Splunk ingesting additional information from the source, when there is no actual data present in the source ?

Whats the major difference between splunk 8.2.4 and splunk 8.2.6?

How to create a search that will compare results from search with lookup?

How to export Splunk data to CSV file using Javascript

How to fix Splunk indexers max volume size exceeded?

SNMP modular input / MIBS

How to Extract Fields from raw events with regex

Getting error while configuring DCN in Splunk add-on for VMware metrics

What are best practices for data duplication, ingesting Crowdstrike vs. UF (Windows)?

2 Search Deployer: Can one act as master and one as backup server that replaces master in case of its failure?

Is parallelIngestionPipelines working in 8.1.9?

How to fix this error in health?

Help creating search to retrieve the results of the sum of Pb + Pb2 + Pb3 classed by name and town

How to get SCOM data to Splunk without Windows Server?

Is there a way to set up a multi-domain certificate and a wildcard certificate?

Why after switching from HF to UF, MSWindows:2012:IIS event no longer parses correctly?

How to check which user is downloading which dashboard?

This Week's Community Digest - Splunk Community Happenings [9.26.22]

BSides Splunk 2022 - The Call for Papers is now Open!

Sending Metrics to Splunk Enterprise With the OpenTelemetry Collector

Unable to create new indexes directly on Splunk We...

Splunk issue to display some special characters in...

How to get mandatory cookies to access Web UI?

Does the known issue SPL-210107 is fixed in versio...

How to fix 0400 ERROR HttpListener?