Splunk Enterprise

Community Activity

What is the correct method to backup/restore Splunk Enterprise? What is the correct method to backup/restore Splunk Enterprise? I believe I can backup (Linux) using this command: ta... by SplunkNinja Path Finder in Splunk Enterprise 12-17-2022 0 8	0	8
Help on basic questions concerning HEC? Hi I have read all the HEC Splunk documentations but there is some things that are not clear for me I know the proces... by jip31 Motivator in Splunk Enterprise 12-17-2022 0 5	0	5
Unable to push shcluster bundles after upgrade- possible kvstore issue? I am unable to push shcluster bundles post an upgrade to 9.0.2 from 8.2.7. I have also completed the upgrade and migr... by dtow1 Path Finder in Splunk Enterprise 12-16-2022 0 2	0	2
Help with SVC usage on ad-hoc search How do we relate index=_audit action=search search=* user!=splunk-system-user provenance!=scheduler \| table _time us... by sumanth87 Engager in Splunk Enterprise 12-16-2022 1 0	1	0
How to set an email alert in Splunk? Hi All, I'm to trying to set an email alert notification by using splunk. In the alert Description, I just want to me... by Kk Path Finder in Splunk Enterprise 12-16-2022 0 6	0	6
Is there a Splunk Enterprise non prod license- apart of Dev/test and developer? I am looking for information for a project, my need is to establish a non-productive environment. I am looking for in... by Matilda Explorer in Splunk Enterprise 12-16-2022 0 4	0	4
Is there possibillity to Subscribe and get info when new version of Universal Forwarder have been released? Hi,My Company (Länsförsäkringar AB) in Sweden use Splunk and my Team use Universal Forwarder Agent.I wonder if there ... by edtslom Observer in Splunk Enterprise 12-16-2022 0 0	0	0
How to connect to Splunk using Databricks and then Read tables from Splunk in Databricks? Hi, I need to connect to splunk using Databricks and then Read tables from Splunk in Databricks. How do I do it?. I p... by Kashif Observer in Splunk Enterprise 12-15-2022 0 0	0	0
CM and IDX Different Splunk Enterprise Versions? One of my colleagues said we could be running different Splunk Enterprise versions on the CM and IDX Cluster. For ex... by SplunkNinja Path Finder in Splunk Enterprise 12-15-2022 0 1	0	1
Splunk TA for NetApp Data ONTAP - What do I need to change to collect performance data from all of my 3000 volumes? Hello! I have a cluster with 3000 volumes, and the Splunk Add-on for NetApp Data ONTAP only collects performance data... by sebwal10 Explorer in Splunk Enterprise 12-15-2022 0 1	0	1
Splunk Web GUI does not show after Splunk server restart from CLI? As the title says, Splunk Web GUI does not show after I restart Splunk server from CLI. Help? by nrs011 Observer in Splunk Enterprise 12-15-2022 0 2	0	2
Artifact Replication Failed when Triggered in a Scheduled Report? I'm seeing errors in a search.log related to loadjob command and artifact replication occasionally failing for a repo... by Micheal_S Path Finder in Splunk Enterprise 12-15-2022 0 0	0	0
How to fix error during data ingestion? Hi, I am trying to upload data to Splunk with the help of a python script. I am getting a 401(unauthorized) error on ... by PoojithaMJ New Member in Splunk Enterprise 12-15-2022 0 0	0	0
When I start Splunk, why is web server at http://127.0.0.1:80 never available? I am moving Splunk 6.6.1 to anther empty server.Because I cannot find Splunk 6.6.1 install package I moved splunk hom... by Li Observer in Splunk Enterprise 12-14-2022 0 0	0	0
What are some best practices for creating large datasets for testing? Hello, I need to generate a 1000+ records (5-10 fields) fake PII. What Best Practices, SPL, process have you designe... by genesiusj Builder in Splunk Enterprise 12-14-2022 0 2	0	2
Upgrade Requirement Clarification Hi, We're preparing to upgrade SE from 8 to 9 and have a question about this requirement:For distributed deployments ... by R15 Communicator in Splunk Enterprise 12-14-2022 0 0	0	0
Why is Splunk is changing day for month? Hi, i have an edge server with splunk forward to ship log file to indexer. The log is being indexed but splunk is c... by ptlemos Engager in Splunk Enterprise 12-14-2022 0 2	0	2
How to add symbol "%" in y axis and translate axis y1 and y2? Hi to all, in the graph below, I need to add symbol "%" in y2 axis and translate axis y1 and y2. Can someone help... by Robertoing Explorer in Splunk Enterprise 12-14-2022 0 0	0	0
Hyper-V TA Installed on SH and UF's- What have Splunkers used for creating visualizations of this data? Hello,, I have installed the Hyper-V TA on our search head and our heavy forwarders. There was a Splunkbase app calle... by genesiusj Builder in Splunk Enterprise 12-13-2022 0 0	0	0
How to parse multivalued field to every line? Hello Splunkers. I need help regarding a field with multiple values that must be separated. I have the following log ... by wvalente2 Explorer in Splunk Enterprise 12-13-2022 0 3	0	3
How to remove a single value from a mv field? Good morning/afternoon/evening, I have a field (registeredIp) that sometimes will not have an IP address in it, it wi... by richtate Path Finder in Splunk Enterprise 12-12-2022 0 4	0	4
How to merge the single viz and table vis in same row in Splunk dashboard XML? Hi, Can someone help me to provide the solution same as like in attached image. by kartm2020 Communicator in Splunk Enterprise 12-12-2022 0 4	0	4
Splunk User Getting Permission Denied In Linux Hi,I heard that it's frowned upon to run Splunk on the root so I created a Splunk User. I can't figure out why I can'... by OgoSplunk Path Finder in Splunk Enterprise 12-12-2022 0 4	0	4
How to undo a mistake made while trying to create an index and the CLI? Hi, I've been learning Splunk on my free time and at the part of my lesson that is teaching me how to add a splunk in... by OgoSplunk Path Finder in Splunk Enterprise 12-12-2022 0 2	0	2
How to group same events in timeline until event change and so on? Hi I would like to group events in a timeline as a count until a different event occurs Example: So basically ac... by nathanluke1986 Engager in Splunk Enterprise 12-12-2022 0 3	0	3