...or some time. I am running SSL on port 9997 between my forwarders and my Indexer. Certs being used are custom.
I recently have had a problem with two Universal Forwarders. They are not f...
...uditActiveDirectory
I need to run splunk on windows to monitor active directory systems.
1. Am I able to just install another indexer on windows and add this one to the existing linux e...
These will be running SUSE 12. Each SSD will be 1.6TB. The systems have hardware RAID cards, but I'm tempted to go with JBOD, and use Linux tools or even ZFS to manage the volumes.
RAID50? eg, R...
So I know that this sounds odd. Our Deployment Server is located on our Indexer Cluster Master. We are running all our Splunk systems on RHEL and I would like to deploy the Splunk App for Linux. A...
The goal i have is to track when a user launch wireshark i want to see what user launched it. I also want to see what the user is doing within the application such as packets that were captured etc. ...
I read a while back that there should be two splunkd processes and one splunkweb. We configured our internal process monitors thusly.
They're alerting this morning because there is only one s...
...plunk as well. All systems are linux OS. We use a custom app to collect the local linux OS logs in /var/log. All hosts running the Universal Forwarder and the search heads and the heavy forwarders get t...
I am working on migrating from Centos 7 to Ubuntu 22. Single search head, indexer cluster (3 indexers), and a deployment server used just to manage clients (not Splunk servers). For the SH a...
Hello,
I would like to know if PDF Report Server in version 4.2 of Splunk will also run on windows machines.
Thanks in advance and kind regards,
Luca Caldiero
Consoft Sistemi S.p.A.