In the documentation on dataset literals there is an example query:
FROM
[
{ state: "Washington", abbreviation: "WA", population: 7535591 },
{ state: "California", abbreviation: "CA", population: 3...
our main Splunkadministrator retired and we since disabled his Active Directory account which he used to create and manage hundreds of Splunk searches, now listed as Orphaned under Settings \ All C...
I have two Splunk instances, a development and a test platform. Can I have them both pointing to the same indexer without having them interfere with each other? My administrator tells me that the e...
Hello, We are trying to configure the authentication extensions forthe Okta identity provider and below are the steps as per theSplunk documentation.Log into SplunkPlatform as an administrator...
Hello,
Data in CyberArk comes through the Syslog Server and CyberArk TA needs to be installed into Search head (or search head cluster) based on theSPLUNK web site (https://docs.splunk.com/D...
How to customize the Phantom dashboard time filters dropdown box (see screenshot below)? For a Phantom instance, we have started exploring using the data retention features of Splunk Phantom k...
Dear All, I'm very new to Splunk! In my organization, Splunk Enterprise was deployed and the management want to monitor all the data platforms, applications in Splunk. Lately, I have deployed C...
...PDF file can be generated and displayed correctly. I then configured to schedule a PDF delivery for a dashboard report. However, I've problem receiving the emails. The system administrator c...
I mean I don't even know where to start with this Error, lol Of course you can not import something that does not exist, it's like me saying I can not eat the cake that does not exist on my table....