Hi There,
I am new to Splunk and am currently trying to getWindows Services data into Splunk. I am using Splunk Cloud and already have Windows Event Log data being ingested via a Universal F...
...howing up in "Forwarder Management" but I can't seem to get event logs from any servers except the deployment server. I have enabled firewall ports outbound 8089 and inbound 9997 on the deployment server. T...
The question pretty much sums it up.
I am wanting to get PerfMon data into a Metrics index and have been banging my head against it for about a week now. So far, I have been unsuccessful in my e...
Hope you are doing great.
Again facing a challenging and seeking some help.
Prob statement
We have 200 windows server out of which 3 devices and not reporting suddenly.
I tried t...
Hello,
I am trying to read from events logs namely {Microsoft-Windows-Windows Defender/Operational}.
From Manager>Data Inputs>Remote Event Log Collections, I get only the list below as l...
I am probably overengineering this but this is the only way I could get a script to execute on UF, via a deployed application's bin folder 🙂 I have a .path file which executes powershell.exe -c...
...plunk install app /tmp/splunkclouduf.spl. 3. I restart the splunk process. No data went in, may I know why? Note: I am trying to forward the Windows event log which is the same h...
I am trying to use a Universal Forwarder to get a load of windows event logs that I need to analyse into Splunk. The event logs are from about 7 different systems and are all located on my local l...
...Input options mentioned in the link to getwindows registry data. My question is, how do I see those options? Do I need higher level of access like Admin or something similar? Please advise.