Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
2,000 results
Sorted by:
07-19-2020
01:14 PM
...lert which filed should be used. "source type" or "event type". and if you define it with a valid reason I would be very glad thanks
- Tags:
- event type
Labels
- Labels:
-
event type
06-25-2019
08:05 AM
Hello. I am trying to get interactive logon logs for all workstations in an organization. The event code for this log is 4624 with the Event Type 2. I am only seeing Event Type 0 in Splunk when I d...
01-29-2019
10:14 AM
Is there a way to easily set all event type permissions to global? Some of my apps have many event types and none are global...
Thanks.
4 weeks ago
I have a dashboard displaying counts on some event types I have created. I tried to optimize by adding a base search to my dashboard but it seems that event types are not available in the results o...
Labels
- Labels:
-
simple XML
08-05-2020
10:04 PM
Hi, I have a stat on eventtype like this index=xyz | stats count by eventtype This query generates: All_logs = 14 Error = 2 Login = 4 Auth = 8 Where All_logs is also an eventtype w...
09-05-2019
07:17 AM
Hello I have the below sample events
Thu Sep 5 10:00:02 EDT 2019 XDB EXPIRED & LOCKED 28-SEP-11 CTXAPP
Thu Sep 5 10:00:02 E...
11-16-2018
12:09 PM
I am trying to identify which source types produce data with the same log format. Currently, I am using this query to show the highest percentage log pattern for access logs in my domain:
s...
04-18-2020
10:39 PM
...ocumentation, I should map the tags of Vulnerabilities CIM Model - report , vulnerability - to the event type. Is there a way to do this within the splunk add-on builder via the UI, so I could package i...
11-20-2012
12:06 AM
Hi, is it not possible to use a regex to determine an event type. I would like to usee something like:
\d{4}-\d{1,2}-\d{1,2}T\d{2}:\d{2}:\d{2}.\d{3}. \| [A-Z]+ \|
to classify events.
- Tags:
- eventtypes
- regex
01-24-2017
01:45 PM
I cannot get event type coloring to work strictly by defining a new event type in Splunk Web and assigning it a color. Is there a configuration toggle somewhere to enable/disable event type coloring?
