We are ingesting Exchange message trace logs and the username is not being pulled correctly. Reviewing the default/props.conf file I see the following field extraction:
EXTRACT-user = ^(?:[^"\n...
This issue comes up when you need to delete an obsolete or duplicate tag, event type, transaction, or similar knowledge object. It also turns up in situations where you find you need to change the a...
Hello fellow Splunkies,
is there a method to programatically list the objects/resources used by (scheduled) searches, e.g. on which indexes, lookups, and macros they are relying on?
The idea i...
...ebugging but the BaseConnector only has debug_print and error_print methods. How can I print INFO, WARNING and TRACE logs on my connector? Thank Eduardo
....BuiltConfiguration;
import org.apache.logging.log4j.core.layout.PatternLayout;
import com.splunk.logging.*;
import java.io.*;
public class Main {
private static final Logger log;
static {
c...
...ramework and architecture about Splunk Enterprise and Why is it to use all http methods ( GET, POST, PU, DELETE, TRACE, etc )needed.
PS.
As I asked questions before that ( https://answers.splunk...
I have custom Thread Dump data and I want to index them in Splunk. So far I have applied almost all methods to index and parse them but I'm not able to get meaningful information from them.
B...
I've had a read of various methods for achieving this and find myself confused. As far as I can tell there are the following possibilities:
Use Splunk's .NET trace listeners to send to Splunk C...