Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
118 results
Sorted by:
07-19-2020
01:14 PM
I just want to know which filed name makes more sense to use for the segregation of the log type. for example, we have Linux and windows logs. for separation of the log types in the report or alert...
- Tags:
- event type
Labels
- Labels:
-
event type
03-07-2011
03:24 PM
In alerts_actions.conf I can set up my email alert actions. I have it set so the saved search results display as a CSV attachment. Is there any way to have them displayed in-line as well? I've t...
06-13-2016
09:44 AM
Hey,
I was looking run a historical search for a specific alert over a period of time. What search can I run in order to search by alert type?
10-29-2013
02:45 PM
2 Karma
Is there a way to send an automated alert for various types of licensing violations. It would be useful to get an automated alert when certain high water marks are reached, i.e. 90% used. And also g...
Labels
- Labels:
-
license
10-09-2018
07:02 AM
I want to create an alert that triggers when a source type doesn't exist in a lookup table (e.g. srctype.csv). But I'm not sure how to create the search string for this. The fields I'm using in the s...
04-26-2012
11:39 AM
Hi, I would like to use Splunk to parse xml and json data files and trigger the alert if the element "checked" is false. I would appreciate if you can provide an example on how to set up the field e...
03-19-2010
04:45 PM
We get an alert from sourcetype=ps as a result of running this save search: (authentication failure) OR (Account * too many attempts) OR (Failed password) startminutesago=5
We turned off the *n...
- Tags:
- alerts
- configuration
01-24-2020
07:24 AM
Hello,
On Splunk cloud dashboard alert setup, how I can setup the alert email to be sent as soon as the incident occurs? is it possible change the "Alert type" from Scheduled to other type? All I...
10-19-2016
07:40 AM
...plunk. The Splunk Application distinguishes between 4 source types
•pp - PurePath
•pa - PageAction (Client Action)
•visit - Visit
•alert - Alert"
I do see an index named "dynatrace" but not t...
03-05-2018
08:35 AM
Splunk Enterprise Security uses "event types" as a means to suppress future alerting on a set of field values. We like this feature, but I want users to be able to add a new suppression without h...
