...o default profile.ps1 file
$LogCommandHealthEvent = $true
$LogCommandLifecycleEvent = $true
Then I try executing a powershell command in powershell window,I can see this record i...
I've noticed that running the "| history" command will return different results based on the setting of the timerangepicker. So my question is how can I define the earliest and latest values w...
I want to see all the searches that are run on Splunk server in a given time by different users. I am using the “|History” command which shows all the splunk searches that I have run but it does n...
I am working on a dashboard that displays previous queries in splunk.
I can find the previous queries using the historycommand or by searching _audit.
Using history:
experiments tells me t...
VERSION=8.0.6 ES version= version = 6.1.0 Splunk_DA-ESS_PCICompliance=4.1.0 Issue is for the “PCI Compliance Posture” dashboard the View “Compliance Status History” is not showing data. It just d...
The issue is for the “PCI Compliance Posture” dashboard the View “Compliance Status History” is not showing data. It just displays. It just displayed line
Try:
history type=ah action=settle
I get this helpful hint:
"Note: Your first search term is also a search command. Did you mean " | history"?"
Okay Splunk, thanks for the tip.
I'll t...
Hi All, just wondering if anyone has a search that shows which user deleted another user in Linux ? Typically in the linux syslog messages, when we check for userdel messages , it only...
...'d need to refer to later so that was no point in saving. I'm hoping it's still in my search history somewhere, but the only way I've ever interacted with my search history is when I've typed the f...