Hi, I'm trying to configure "custom Data Type" > SQS input in Splunkadd-onforAWS app to onboard data from an AWS account. is it possible to create the SQS input using IAM role instead of a...
Hi, we are running a splunk single server deployment with version 8.29. Now we installed theSplunkAdd-onforAWS Version 6.3.1 . But after the installation theSplunkAdd-onforAWS, we a...
I am trying to set up SplunkAdd-onforAWS to pull my logs from my AWS account into splunk. I have a Splunk Enterprise setup on prem in an AWS EC2 server. I used theSplunk Enterprise AMI. I have a...
...hen I go into the inputs.conf file manually and input the region that was assigned to my programs account, still, no log data. I even went in configured an index fortheAWSadd-on, went into the...
Hi, I've configured an Alert to be sent to Email and AWS SNS. My query usually finds multiple results, when an alert gets sent to email, it's able to see all the results. However, when thealert...
I have configured S3 bucket logs with input Generic S3 onsplunk heavyforwarder through splunkadd-onforAWS and given the index name,but all s3 bucket logs are going to splunk default index _...
Hi Guys, I have this issue on my splunk hf on vm redhat on azure I installed theawsaddon but when I try to configure I have this view. someone can help? Regards Alessandro
Hi, I have a bunch of alerts in my savedsearches.conf. I would like to configurethealert action "Add to triggered alerts" (as is offered when you addthealert using the ui). I am doing this p...