...: Monitor a web server Monitor an application server Monitor securityincidents The examples are really simple, and the resulting dashboard created in the tutorial is a poor example of something y...
Hello, I have two savedsearchessavedin the same app in a SH with EnterpriseSecurity: from Splunk ES Content Management section, one has type "SavedSearch", the other has type "Correlation Search...
Hello,
Our security team has had a need of a asset management tool to keep track of our hardware and software inventory with respect to our security processes andsecurity controls. Our s...
Evening Splunk community, My organization practices Blue / Green data-centers and requires us to switch production data centers every quarter. In my environment I manage two standalone Search...
Hello, I was given the administration of a SplunkEnterpriseSecurityand I am not familiarized, I have always used manual queries from "Search & reporting" I have the knowledge level of F...
It's been a while since we implemented SplunkEnterprise, and user engagement has stalled a bit. We also have a lot of people who are new to Splunk. Do you have any recommendations for how we can e...
...EnterpriseSecuritySuite) from etc/shcluster/apps to etc/apps folder Ran the upgrade command – (/opt/splunk/bin/splunkinstall app ./splunk-enterprise-security_620.spl -update 1) Ran the essinstall command as per the in...
How do you install and configure the Splunk for Cisco Security app found here:
http://www.splunkbase.com/apps/All/4.x/App/app:Splunk+for+Cisco+Security
Hi,
I want to confirm where the KVStore reside on the Splunk Architecture stack. I know that there's a related MongoDB process along with Splunkand therefore was wondering if it's part of the Splunk...