Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
215 results
Sorted by:
03-16-2022
06:51 AM
We are currently using a Splunk Enterprise environment with one search head and one indexer. We enabled data model acceleration because the performance of the search became poor as we used the s...
Show results in replies (4)
-
...pecified explicitly in the docs - the acceleration.source_guid parameter must be set on a per data...
-
Thank you for your response. It was very helpful.
-
Try this - https://docs.splunk.com/Documentation/Splunk/8.2.5/Knowledge/Sharedatamodelsummaries
-
I want to have two completely independent search heads connecting to the same indexer, s...
11-09-2021
01:59 AM
...ACCELERATE_ I accessed the Data Models page and expanded the CIM Validation (S.o.S) data model. The information I got is: "Access Count: 0 - Last Access: -) while size is 750MB and frequently updated. My q...
- Tags:
- splunk_cim
Labels
07-26-2021
06:14 PM
Hi All, I'm not that familiar with DMA as I have not had any exposure really to setting up data models so far but am currently having an issue atm with DMA not saying active. We had to disabled D...
Labels
09-15-2022
08:07 AM
Hello folks,
there is a tool that helps in sizing a server that will work with accelerate data models ?
Or wich is the best way to achieve that goal?
It seams that splunk base configuration 1...
Labels
- Labels:
-
deployment server
Show results in replies (5)
-
Hi @linspec9721, in this case the hardware reference starts from the minimum you know (12 CPU...
-
Hi @linspec9721, the storage required for accelerated Data Model, for one year is around data...
-
Hello @gcusello. And regarding CPU and RAM sizing? Default 12/12 configuration it seems not enough...
-
...model acceleration shouldn't give problems, obviously if you have many users that use datamodels, y...
-
Hello @gcusello , I was speaking about Enterprise version. Thank you
02-10-2021
04:57 PM
Not sure where & how to address the below skipped job. I would appreciate any guidance Report Name Skip Reason (Skip Count) Alert Actions _ACCELERATE_DM_SA-IdentityManagement_I...
- Tags:
- skipped job
Labels
- Labels:
-
report acceleration
03-24-2018
06:31 PM
My Splunk architecture is having 8 Searchheads in a cluster and 40 indexers in a cluster.
If i have to accelerate the data models, i have to update datamodels.conf in all the searchheads. So, I a...
11-11-2022
08:37 AM
...models, I have a question regarding the storage location and method of accelerated data. If the data is accelerated, does the data model summary folder store the complete accelerated data or will i...
Labels
02-20-2020
09:28 AM
Hello Im running splunk data model acceleration And it stopped working. It is stuck in skipping and nothing happens With “summariesonly=true” i get no results but if i set it to false i get r...
Labels
- Labels:
-
data model
-
report acceleration
02-14-2017
10:16 AM
Hi guys -
I have 3 data models, all accelerated, that I would like to join for a simple count of all events (dm1 + dm2 + dm3) by time.
3 single tstats searches works perfectly.
Search 1
| t...
11-08-2022
08:00 AM
I know that I can get the current size of an accelerated data model using REST or just using the web GUI under settings "Data models", but how can I see the historical (disk) size of the accelerate...
Labels
- Labels:
-
other
