Splunk Premium Solutions

Category Activity

	Addon: Azure AD Graph - always returns error - Rest URL not available. Hi Guys,I'm playing around with Splunk Soar on prem.No matter what I do, I can't get this addon working.I've followed... by erratic_moose New Member in Splunk SOAR (f.k.a. Phantom) 6m ago 0 0	0	0
	How to get the results of a playbook to show up as a note in a different phase? Hello, I've been tasked with having the results of a playbook show up as a note in a different phase.Any instruction ... by Ragamonster New Member in Splunk SOAR (f.k.a. Phantom) yesterday 0 0	0	0
	Is it possible to send the results of ITSI KPI-based searches via email? I am using ITSI's KPI-based search for text log monitoring. If the text logs match the search criteria, the flow is t... by shoyo New Member in Splunk IT Service Intelligence Sunday 0 1	0	1
	How to retrieve a specific alert in Splunk Enterprise security apart from using Short ID method? Hi All,Is there a way to retrieve a specific alert without using short ID in the incident review page?I was thinking ... by nelaturivijay New Member in Splunk Enterprise Security Sunday 0 0	0	0
	how to make a bar graph showing quantity closed notable events based on last modified time in a time range of 12 hours? I would like a search query that would display a graph with the number of closed notables divided by urgency in the l... by grotti Engager in Splunk Enterprise Security Saturday 0 1	0	1
	How to send only not suppressed notable from Splunk to SOAR Hi,we are using Splunk ES with notable events and suppressions. For sake of completeness, we have alerts that produce... by drew19 Path Finder in Splunk Enterprise Security Saturday 0 1	0	1
	Adding key indicator search to custom dashboard in Splunk Enterprise Security Hello,I'm trying to add new/existing key indicator searches to my dashboard in ES, but the edit toolbar does not have... by ThuLe Observer in Splunk Enterprise Security Saturday 0 1	0	1
	What is the retention period for summaries generated by Data Models? We have activated several data models for use with Splunk Enterprise security scenarios and are interested in clarify... by VK18 Explorer in Splunk Enterprise Security Saturday 0 1	0	1
	incident_review migration to new splunk enterprise security (SH cluster) I have an old stand alone search head with Enterprise security and I'm migrating to a new search head cluster.Now I h... by almomani New Member in Splunk Enterprise Security Saturday 0 1	0	1
	Getting error:0906D06C:PEM routines:PEM_read_bio:no start line after activating enableSplunkdSSL in server.conf I have loaded a SSL Certificate on our development server (Splunk 8.1.4). I added the following to the server.conf fi... by BernardEAI Communicator in Splunk Enterprise Security Thursday 0 2	0	2