Hello,
For planned test environment with ES I'm trying to see what fit better to my scenario.
I can see that SplunkAdd-onforUnixandLinux can read the auditd via some script. I found also the...
Forgive my ignorance as I'm relatively new to Splunk. I'm currently hitting what I *think* is a data type issue, but I'm not quite sure how to proceed. We are using theSplunkadd-onforUnixand...
Fairly new Splunk user here looking forLinux auditing solutions. I am running a disconnected version of Splunk Enterprise and thus cannot make use of the content pack which replaced the a...
I need to monitor one or more UNIX filesystems onthe server where Splunk is installed. Can I do it without theSplunkAdd-onforUnixandLinux which is available in Splunkbase?
I just realized that the NIX TA is being deployed to our forwarders via the deployment apps, to the indexers via the master apps and to the SHs via the SH apps. It was a surprise for me to realize t...
Fortheones who use theUnixaddon for extracting authentication events for Enterprise Security, and some events are not recognized, mainly on Ubuntu Linux (not tested on other distribs), here's the...
Hello,
I'm trying to only get a certain server processes to ingest to splunk index using SplunkAdd-onforUnixandLinux script by editing the ps.sh script by adding grep command in there. like b...
Installed SplunkAdd-onforUnixandLinux 9.0.0 not getting memory data for ubuntu server? Checks performed 1) Getting data for logical disk space and cpu but not memory 2) sar utility is i...
Our organization would like to deploy theSplunkAdd-onforUnixandLinux to gain support for Python 3 on our 7.2.3 Splunk deployment. However, due to our having a large number of CentOS systems i...