From a Splunk custom App, I need to add the workflow action which should be displayed under the Actions menu for the notable event in the Incident Review view in the SplunkEnterpriseSecurity. I h...
Hi,
How can I configure a Correlation Search in ES to add risk to 2 objects (src & dest)? I can only configure a AdaptiveResponseAction once from the drop down menu.
Savedsearches.conf s...
Hello, I've created adaptiveresponseaction with Add-on builder 3.0.1. It creates a ticket in ticketing system. Splunkenterprisesecurity 6.2.0 is running in a cluster. Indexers are also c...
...till I m not able to install it on Splunk Cloud EnterpriseSecurity Sandbox environment. I would like to test the AdaptiveResponseActions for which I have made actionsin my app. Can someone guide m...
Hello,
I'm unable to get field validation in a Custom AdaptiveResponseActioninSplunkEnterpriseSecurity. What I would like to achieve is a field validation that obliges the user to fill the f...
...ev.splunk.com/view/addon-builder/SP-CAAAFBQ). My code is almost identical but I don't use setup parameters nor SplunkEnterpriseSecurityactions.
The problem I'm having is that input parameters are n...
Hi,
Is there a way or any direct link form where i can download all the sessions of Splunk 2016 which is available at the below link?
https://conf.splunk.com/sessions/2016-sessions.html
I k...