...older and data IS getting into Splunk Server. But when I check the Universal Forwarders etc/system/local/inputs.conf file I only see 2 lines [Default] and Host name. Nothing there about the d...
The instructions for configuring datainputs for the TA-Azure imply that there should be additional items under Settings -> DataInputs. We're not seeing them. We've installed and enabled the TA b...
...All the other inputs within the Cloud Services TA are working (azure audit data via eventhub). When I disable the umbrella TA nsg flow logs can be received without a problem.
&n...
...low (13/07/2020) is coming fine, but the count is very less OR zero for the past month dates, i validated the events/data are present there in my azure for the respective dates. below is my inputs...
...ending data:
Below is the setup:
This is error I find in the logs:
logger=azure.eventhub._eventprocessor.event_processor pos=event_processor.py:_load_balancing:2...
I am trying to upgrade to the latest version of this app but the inputs setup page is Loading forever. Microsoft Azure Add on for Splunk version 3.0.1 on a UX Heavy Forwarder. https://s...
...vents, ensured it is enabled) Create an HTTP Event Collector via Settings > DataInputs > HTTP Event Collector Attempt to run a curl to the hec Public IP Address Azure R...
I am a Splunk novice and have created a splunk indexer cluster in a windows environment. I have two heavy forwarders gathering event log data from machines in each heavy forwarder’s specific subnet....
...lassic" options: Security, Application and System. If we want to collect also DNS query logs and PowerShell one, how can we achieve this using UF? I suspect we need to modify the inputs.conf f...