Hi!
I want to connect with Azure ActiveDirectory and get its logs into Splunk. What is the procedure of doing this? Can a Splunk forwarder be installed in Azure (and how should it be done)? Or s...
Hi Team,
Recently we got an requirement from our internal teams to ingest the ActiveDirectory logs into Splunk. Hence our Cluster Master, Search Heads & Indexers are hosted in C...
Having issues receiving data from my AD,
Firewall is set to allow 9997 and 8089 TCP/UDP Outbound and Inbound
I get the below Error and warning in my splunkd.log
11-06-2013 06:59:02.526 +1...
Hello, I'm a bit new to Splunk and I'm trying to run a query that shows me users in Activedirectory that are still enabled but haven't logged in for past 30 days. I've tried searching t...
Sorry for the question, I can't think of a sane & sensible way to get the data out of Splunk in a computationally efficient way:
Our data sources:
Activedirectory security events
C...
Dear Splunkers, I have a question regarding AD data input. Can you please advise on what sourcetype and source of events is correct one? I have installed UF and created input - data came from W...
Is there a way to see how much data we are getting in from ActiveDirectory, Exchange and Radius (size of the indexes/number of days the data goes back)?
Splunk version: 6.5.3
Enterprise d...
...he events out of Splunk. The data size does not matter (can be small). My questions:
1) Which product and license should I purchase? Can get by with just the free version?
2) How to set up f...
Trying to getdata from the AD data from the forwarder to Domain Controller.
Could not see any settings within Splunk that show ActiveDirectory and am wondering how to ingest data from that.