Can I injest CPU, memory,eventID data in metric index by using SPLUNKappfor Windows ? I am getting data once I injest this data in event index but when I am changing the index to metric index t...
For the ones who use the Unix addon for extracting authentication events for Enterprise Security, and some events are not recognized, mainly on Ubuntu Linux (not tested on other distribs), here's t...
HI,
I recently deployed Splunk Enterprise Security 4.5 into a Search Head Cluster and whenever I use the SplunkAppforUnixandLinux, I am getting the below error from all indexers:
[PROD-X...
Hi there, I am using REHL 8.6 x86_64 (0otpa) / Kernel 4.18.0 and trying to update Splunk Add-on forUnixandLinux...I am getting this error - An error occurred while downloading the app An error o...
I installed Splunk Add-on forUnixandlinux on a single Splunk server environment for testing. However, each time I go to the App, it shows the set up page. I made the selection, clicked save b...
Hi,
I've installed the SplunkAppforUnixandLinux on a Windows 2008 Server andSplunk Add-on forUnixandLinux on a Universal Forwarder on a Linux RedHat 5.5 Server.
I've configured the Splunk...
Hi, Given the below system architecture on a single server: 1. When I pass the OS data generated by the Splunk addon (SplunkAppforUnixandLinux) through the universal forwarder to Splunk...
...:Update 204 0.217% apache:error 188 0.2% Btw, I installed SplunkAppforUnixandSplunk Add-on forUnixandLinux on my Splunk. But this shall not attribute to the additional sourcetypes coming u...
Hi ,
I have splunk_TA_NIX app installed on indexer,Heavy Forwarder and search heads.
When i search index=os sourcetype=cpu on indexers i can see below fields.
But same query w...
Trying to monitor the performance data on MacOS and downloaded Splunk Add-on forUnixandLinux After clicking 'save' for setting on Splunk Enterprise Web, it shows the page that says 'S...