...aguely from overhearing conversations at Splunk that this big flat list of 'admin/foo' endpoints is considered less than ideal and I thought I overheard that for each of them there is a more f...
...nyone provide guidance on building/modifying the inputs.conf for window event collection from endpoints or point to a good reference?
Also does any one have tips on how they separated the winevent l...
Has anyone see these errors? Do you think these are on the Splunk side or Microsoft side?
2019-11-25 13:57:12,837 ERROR pid=59059 tid=MainThread file=base_modinput.py:log_error:307 | Get error w...
Hi , I wanted to update blacklist lookup table for the list of server . I wanted to download the existing blacklist lookup table . In the downloaded csv file i wanted to check t...
...olution to that.
We are using Splunk Enterprise 8.0.0 and by reading the "Endpointsreferencelist": https://docs.splunk.com/Documentation/Splunk/8.0.0/RESTREF/RESTlist
I see that the REST-API a...
...nalysis:
CDR data (simple text string, not an issue)
RTP/RTCP reported metrics (no so simple, see above)
Periodic user list for cross reference by name/local (long, but again simple text)
Dynamic s...
...earch jobs which can be used to find search name and then use the sid to get the results.
I have also tried to do GET to Services/search/jobs and I get a list of all the jobs which is in turn is tons o...
...ust getting a link to the acl)
https://<host>:<mPort>/services/catalog/metricstore/metrics
Im authorizing as a user with list_metrics_catalog capability. Please find the acl p...