Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
44 results
Sorted by:
12-15-2016
10:56 AM
...ver 300 suppressions. I can view suppressions under Settings --> Event types in the Web UI, see them in SA-ThreatIntelligence/local/eventtypes.conf, and can see that they're being applied where a...
11-03-2016
01:36 PM
We have a lot of indicators in our Splunk Incident Review queue, and I am having a challenging time with Splunk Enterprise Security Suppression, and it's driving me nuts. It's been about a year and I...
05-06-2019
08:38 AM
I'm a Splunk administrator, not a Windows administrator, so my Windows knowledge is limited. Nonetheless, many teams can benefit from having Windows Event Log data in Splunk. What are the best p...
03-28-2018
01:19 PM
1 Karma
...s disabled.
Extra info: I'm in a distributed Splunk environment. However, I'm not using indexer clustering.
Grepped eventtypes:
./apps/splunk_app_windows_infrastructure/default/eventtypes...
12-15-2017
11:52 AM
...inux_collectd_cpu to the two source types, so this gives rise to a first question: Will Splunk_TA_linux's eventtypes.conf need tweaking?
Assuming I set the forwarder to monitoring /var/c...
06-27-2013
04:59 AM
none of the event types in eventtypes.conf under \Splunk\etc\apps\Splunk_for_ActiveDirectory\default\ work in search. For example if i search for "eventtype=wineventlog-security" i get "Unable to f...
05-02-2019
05:37 AM
I'm a Splunk administrator, not a Windows administrator, so my Windows knowledge is limited. Nonetheless, a many teams can benefit from having Windows performance data in Splunk. Is there a best p...
03-06-2019
11:31 AM
3 Karma
I have a mixed *nix and Windows environment and I'm currently collecting the Windows data with the Splunk Add-on for Microsoft Windows as event data. I want to start using the Splunk App for In...
07-02-2015
05:19 AM
...I believe I have found a bug in Splunk in eventtypes you can create via the GUI
Steps to reproduce:
- Go to Settings > Event types
- Create a New eventtype
- Give it a name with a s...
10-15-2019
07:54 AM
When setting up my Splunk deployment, I was asked about what timezone I want the servers to have. I just assumed I should use my local time zone for convenience. Am I being short sighted?
