Splunk Search

Community Activity

	Joining two queries not giving the desired result I have 2 queries and joining it with "Join" using the common field "SessionID".With the below query I'm just getting... by Deprasad Path Finder in Splunk Search 07-07-2023 0 10	0	10
	index and the sourcetypes in which the hosts have collected events, with the date of the first and last event on the spe on index=_internal I have to create two searches one on (report ) and one connected to the dashboard where the index ... by jtabilas Loves-to-Learn Everything in Splunk Search 07-07-2023 0 1	0	1
	リアルタイムアラートのルックアップ参照についてリアルタイムアラートにて受信したイベントをCSV lookupを参照して処理し、結果をアラート機能の「結果をルックアップに出力」でCSV lookupに追加しています。イベントの処理中に次のイベントが来た際、処理中のイベント結果がCS... by M_K Observer in Splunk Search 07-07-2023 0 0	0	0
	bucket repair splunk fsck repair --all-buckets-all-indexes i need to know where i need to put this command on Linux by lorscardala985 Explorer in Splunk Search 07-07-2023 0 1	0	1
	Sort result of bin to draw distribution histogram HiI'm trying to draw a distribution histogram of the duration to complete a specific action. The search is: index=ind... by BernardEAI Communicator in Splunk Search 07-07-2023 0 3	0	3
	Help on input text token HiI use an input text token in.my dashboard in order to retrieve spécifications numériques for a fieldIt works but i ... by jip31 Motivator in Splunk Search 07-06-2023 0 7	0	7
	Actions in regards to events coming in We have searches for 4740 account lockouts not showing as action=lockout but instead as action=modified.This is impor... by domino30 Path Finder in Splunk Search 07-06-2023 0 5	0	5
	How to dynamically set a variable for Dashboard Panel Title? I am looking to dynamically update the Splunk Dashboard panel title, depending on options I've chosen from a dropdown... by GaryZ Path Finder in Splunk Search 07-06-2023 0 1	0	1
	Line breaking issue with [source] stanza (with [sourcetype] stanza working fine We are trying to do custom linebreaking for different types of logs under the same sourcetype using the props below.T... by Naa_Win Path Finder in Splunk Search 07-06-2023 0 4	0	4
	Splunk Query to find the AD groups not configured in SAML - Splunk Cloud. Hello,I'm looking for a splunk query to capture AD groups that are not integrated with SAML in Splunk Cloud by Naa_Win Path Finder in Splunk Search 07-06-2023 0 1	0	1
	query search don't match on input by jtabilas Loves-to-Learn Everything in Splunk Search 07-06-2023 0 4	0	4
	populate multiselect why doesn't this search populate the multiselect by lorscardala985 Explorer in Splunk Search 07-06-2023 0 1	0	1
	trim everything till refusal reason from the start Hi,I am trying to trim everything before the "211 Withdrawal amount exceeded: from the output --WITHDRAWAL_AMOUNT_EXC... by man03359 Communicator in Splunk Search 07-06-2023 0 6	0	6
	How to check for armis logs in cloud? Hi All,How do we check for armis app alert logs in cloud, recently We have updated the app so how we can check for t... by AL3Z Builder in Splunk Search 07-06-2023 0 0	0	0
	Piechart split for selected hostname? Hello Everyone, I am trying to create piechart for cache operation split(in percentage) for hit/miss/pass using the b... by super_edition Path Finder in Splunk Search 07-06-2023 0 2	0	2
	Help on nav menu- How to display a menu called "test" and when I click on it, it will display other dashboards? Hi In my nav menu, i would like to display a menu called "test" and when i click on i would to display other dashbor... by jip31 Motivator in Splunk Search 07-06-2023 0 3	0	3
	Why is my join not working here? Hi,In my first search, I got all the details which needs to be displayed in the results but it doesn't have an IP fie... by Woodpecker Path Finder in Splunk Search 07-06-2023 0 4	0	4
	Cloudwatch metrics averages/max etc grouped by account? Greetings, Splunk user but newbie still. I am building some searches to show AWS cloudwatch data averages per accoun... by pileofdata Loves-to-Learn in Splunk Search 07-05-2023 0 1	0	1
	Help on dropdown list token HiI try to filter my table events from à dropdown list like thisOwner=$owner$The item syntax in the dropdown lis is l... by jip31 Motivator in Splunk Search 07-05-2023 0 5	0	5
	Help with splunk query to find login events that happen at a strange time per user Working on a splunk query to find login events that occur outside of the users' typical sign in times. I do not want ... by brucewhaleham21 Loves-to-Learn Lots in Splunk Search 07-05-2023 0 3	0	3
	error while searching host \| Error in 'litsearch' command: Your Splunk license expired Hello Splunk Support,When I search in Splunk console. I got an issue as below: Error in 'litsearch' command: Your Spl... by Syeds New Member in Splunk Search 07-05-2023 0 1	0	1
	How to execute javascript after a search? Hi, I've copied the Search & Reporting app folder as my own app in /etc/apps, now I want to add some JS to be execute... by big_nuggets Explorer in Splunk Search 07-05-2023 0 2	0	2
	Help with Field Extraction Using Regex I have 2 requests here. I am trying to extract and create a new field from logs. Logs for request 1: 2023-06-30 0... by MaddyRaj Engager in Splunk Search 07-05-2023 0 1	0	1
	How to redirect dashboard to alternative URL Hi,We`ve got a dashboard sitting on a problematic SH and would like to clone and move it to another working SH.Is the... by tomapatan Contributor in Splunk Search 07-05-2023 0 2	0	2
	How do I calculate the duration between Login and Logout of user? Hi guys! I want see the avg duration of activity of user on Splunk, but i didn't find the field of logout. by jtabilas Loves-to-Learn Everything in Splunk Search 07-05-2023 0 4	0	4