I am new to Splunk, Can someone please explain me what below query is doing and what does 1 mean at the end of Sourcetype and LIke and what 1=1.
Thanks in advance
| eval UseInSummary=c...
Hi all,
I want to retrieve the event logs of a docker container with a custom index that I created using the Splunk web interface.
Details about the custom index
Name: abc
App: app-d...
Hello,
What is the proper way to purge Splunk SOAR/phantom containers from the database. It seems that deleting a container only hides it from the UI.
Is there a way to purge containers...
I want to set up an organized system of permissions so we can give the right access to the right data and the right Splunk features to the right analysts in my organization. Can I get a sketch of h...
We have a need to migrate our phantom data to another instance including the containers.
Though it's not listed in REST Containers - Splunk Documentation, i was able to export the containers...
Hello, I upgraded our office's Search Head (SH) to 8.1.9 from 8.0.4. On the previous version, MC wouldn't even load. Now that it does, the Overview Window just says "Searching for..." (See s...
I have a handful of searches that I want to build into reports and dashboards so I can collaborate with my team. Can you give me a sketch of how Splunk reports and dashboards work?
I have a search to get an overviewof all users with their authorizations: roles, capabilities, indexes (search found somewhere else on this community). I wonder if it is also possible to get an overview...
Hi there -
I know how to search for parameters/variables that equal X value...but how to I construct a query to look for a parameter/variable containing ______?
For instance - instead of "i...