All Posts

Find Answers
Ask questions. Get answers. Find technical product solutions from passionate members of the Splunk community.

All Posts

There is no good way to do this.  All you can do is to work around with array, like { "visualizations": { "viz_OQMhku6K": { "type": "splunk.ellipse", "_comment": [ ... See more...
There is no good way to do this.  All you can do is to work around with array, like { "visualizations": { "viz_OQMhku6K": { "type": "splunk.ellipse", "_comment": [ "==================================", "This is created by Person1 on 1/1/2023 @companyb", "On 2/1/2023 - added base search", "On 2/5/203 - added dropdown box" ] } },
@gcusello Yes, I did reduce upto 20 kb but still the image is not loading.
How to capture >59+ age users accessing their accounts on daily basis in appdynamics? can this be done using information point or do we have any other method to calculate and get the data?
Hi @Splunkerninja , did y0u tried with a smaller size? Ciao. Giuseppe
@gcusello Yes the URL is referring to the image and it is of 76kb in png format.Still facing the issue
I have installed a free version of Splunk Enterprise 9.1 in my local system. I would need few logs files from my S3 bucket to be sent to Splunk. I have setup up the Splunk Add-on for AWS. In the app... See more...
I have installed a free version of Splunk Enterprise 9.1 in my local system. I would need few logs files from my S3 bucket to be sent to Splunk. I have setup up the Splunk Add-on for AWS. In the app, under configuration, created an account with access ID and secret access key. Then created an input by specifying the account name, bucket name and indexing details. After creating the input, when I search my index and sourcetype, I could not find the logs from S3. I have waited for more than half an hour, then tried again but no luck. As this is the first time I am trying the setup with AWS add-on, I am not sure whether the issue is happening. Could anyone please help me on this?
Hi @anooshac , you can use in the first multivalue the following search: | makeresults | eval group="a" | append [| makeresults | eval group="b"] | append [| makeresults | eval group="c", subgroup=... See more...
Hi @anooshac , you can use in the first multivalue the following search: | makeresults | eval group="a" | append [| makeresults | eval group="b"] | append [| makeresults | eval group="c", subgroup="x"] | append [| makeresults | eval group="c", subgroup="y"] | dedup group | sort group | table group and in the second multivalue the following search: | makeresults | eval group="a" | append [| makeresults | eval group="b"] | append [| makeresults | eval group="c", subgroup="x"] | append [| makeresults | eval group="c", subgroup="y"] | table group subgroup | search group=$group$ | eval value=group.if(isnotnull(subgroup),"_".subgroup,"") then you can use the second value in your panels. Obviously thgis is a sample to adapt to your search. Ciao. Giuseppe  
Hi Yuanlui, I dont think the devs will change the code!!! Thank you, option one seems to do the trick. Its taken me a bit of time to work through the answer to try and understand it and i am s... See more...
Hi Yuanlui, I dont think the devs will change the code!!! Thank you, option one seems to do the trick. Its taken me a bit of time to work through the answer to try and understand it and i am still struggling with the sed magic, but will persevere. thank you again.
Thanks for the reply @PickleRick  It sounds rather complicated with my minimal knowledge, but i will give it a shot. 
Hi @Splunkerninja , check if the url is effectively referred to an image and if it has a compatible format for an image (png or jpg) or if you're using a too large size. In this last case, please t... See more...
Hi @Splunkerninja , check if the url is effectively referred to an image and if it has a compatible format for an image (png or jpg) or if you're using a too large size. In this last case, please try a smaller size. Ciao. Giuseppe
Hi @AL3Z .. Please check this Splunk Advisory: https://advisory.splunk.com/advisories/SVD-2023-1104 the Splunk Cloud affected version is - Versions below 9.1.2308 The Splunk Cloud fix version is ... See more...
Hi @AL3Z .. Please check this Splunk Advisory: https://advisory.splunk.com/advisories/SVD-2023-1104 the Splunk Cloud affected version is - Versions below 9.1.2308 The Splunk Cloud fix version is --------- 9.1.2308   So you should ask the Splunk Cloud Support and ask them to upgrade your Splunk Cloud to the fix version 9.1.2308, thanks. 
Could you please share more insights about the bug like id or official statement? Did it get resolved in newer release? was asking because i didn't find any relevant info in 'fixed issues' section of... See more...
Could you please share more insights about the bug like id or official statement? Did it get resolved in newer release? was asking because i didn't find any relevant info in 'fixed issues' section of the release notes.. 
Hi, We have been informed about a high-severity vulnerability (CVE-2023-46214) impacting Splunk Enterprise (RCE in Splunk Enterprise through Insecure XML Parsing)  as we are on Splunk Cloud Version:... See more...
Hi, We have been informed about a high-severity vulnerability (CVE-2023-46214) impacting Splunk Enterprise (RCE in Splunk Enterprise through Insecure XML Parsing)  as we are on Splunk Cloud Version:9.0.2303.201. Thanks..
Suppose that is raw data, and suppose the table in your original post is desired result - illustrate again if that's not the case, can you describe the logic to obtain that table from this table?  Al... See more...
Suppose that is raw data, and suppose the table in your original post is desired result - illustrate again if that's not the case, can you describe the logic to obtain that table from this table?  Also, can you post the output of the chart command that I proposed (replacing "month" with "date month" if that's the correct field name), and tell us why that output is not desired?  Post both the actual search and actual results in text (anonymize as needed).
@gcusello Yes, It is reaching
The Machine agent is starting but it is not reporting %CPU, %Busy, Free Memory,etc. It does show the processes running on the server but not metrics. Please suggest.
Hi all, I have 2 multiselect dropdowns. One is dependent on other dropdown. The first drop down has groups and second has sub groups. I am facing some problem in appending the subgroup value to the... See more...
Hi all, I have 2 multiselect dropdowns. One is dependent on other dropdown. The first drop down has groups and second has sub groups. I am facing some problem in appending the subgroup value to the respective group. For example, lets assume that group has values a b c and only c has subgroup that is x ,y. I want to append that subgroup as c_x and c_y and pass it to the query. I tried adding suffix in dropdown itself. But when the tokens are selected in any order it is adding the sub group to whole token, that is if i select b,c,a it will add subgroup as b,c,a_x and b,c,a_y.   Any suggestions on how can i correctly append the sub group to respective groups and use it in the query.
25/10/2023 6000 31/10/2023 0 6/11/2023 2500 6/11/2023 500 12/11/2023 -7800 16/11/2023 500   i have a table and i'm trying to create a line chart that starts at 6000, then... See more...
25/10/2023 6000 31/10/2023 0 6/11/2023 2500 6/11/2023 500 12/11/2023 -7800 16/11/2023 500   i have a table and i'm trying to create a line chart that starts at 6000, then has a straight line until it hits the date 6/11/2023 at which point it adds a line 90 degrees and goes up to 8500 and so on .. going up at 90 degrees and down at 90 degrees for the negative values keeping the current total thanks,
Hi, I am fairly new to AppDynamics and I am a bit puzzled by some behaviours with Nodejs Transaction Snapshots. Could anyone explain the following? A HTTP request comes into a Nodejs application an... See more...
Hi, I am fairly new to AppDynamics and I am a bit puzzled by some behaviours with Nodejs Transaction Snapshots. Could anyone explain the following? A HTTP request comes into a Nodejs application and it makes another HTTP request to an external service. All the calls are async and there is no specific correlation setup. I am expecting one outbound request for each inbound request. However, I sometimes see many outbound request calls.  Is this because AppD is just sampling the process, at the time of the snapshot, and showing all outbound calls occurring at that time?  Many Thanks H