I have been tasked with increasing the logging coming from our Exchange servers. One of the requests is to include logging of email attachment content, size, name, or anything else I can collect. I...
Hi, after the installation of ITE Works 4.9.2 and theexchangecontentpack. I checked all the dashboards to be sure the data was correctly processed and I realized that some panels were blank. O...
Hi, recently we deployed IT Essential Works with latest ExchangeContentPack. we also deployed the three addons fortheExchange in theexchange nodes (including IIS and OWA logs). Now w...
Hi, I have configured IT Essential Works (4.9.2) with Exchangecontentpack (1.4.3) and TA-Exchange-ClientAccess (4.0.3). By chance I was checking PowerShell event logs in our exchange s...
Hi,
We have a new implementation of Splunk ITSI, running on Splunk Cloud, in a new search head. Since the day the search head was installed, every search that we run is followed by a warning m...
Hello,
I want to use ITSI ContentPack as a base for implementing ITSI. I also see a documentation about it in https://docs.splunk.com/Documentation/ITSICP/current/Config/About
But, it does not t...
We run a few Exchange servers and we need to collect logs for our Splunk Enterprise Security Suite, however, there are many webapps running on an Exchange server, we want to trim the logs we c...
I have been asked to take on some logs which have a predictable format but which on a one-shot test input shows that Splunk hasn't figured them out. Here is a sample log entry, which is multi-l...
Hey all, a bit Microsoft question.... We do want to monitor windows Group Policy changes in our Domain. We have installed Splunk Add-On and App forexchange and Active directory, and also the...