...ight after getting Splunk Enterprise installed on their local machine. It can be daunting to log into Splunk for the first timeand know what the heck you should do. A person can get through the in...
...o determine "how late" alerts run and if the scheduler is building a huge backlog of delayed searches. I don't know how the scheduling_mode interacts with the schedule window. Does the schedule w...
How do you install and configure the Splunk for Cisco Security app found here:
http://www.splunkbase.com/apps/All/4.x/App/app:Splunk+for+Cisco+Security
...Like by-client, all-clients, by-publisher etc...
choice 2
They want me to try and do this all in a custom searchinrealtimeand not pre-parse/stage this data as I just mentioned. Does means r...
I have a couple alerts that are running inSplunkand I cant always be checking on my email when I am working inSplunk. Is there a way to get the triggered alerts to show up in the message tab w...
Hi I am creating a new environment including around 300 Linux machines and around 50 Windows servers.I will be installing Universal forwarders to forward the data to Central Indexers.
How can I c...
Alerts vs Reports on Splunk "Searches, reportsand alerts" page
I want to make this query to show the number of alerts and number of reports that match exactly how it shows on the "Searches...
Hello As far I understand, the Splunk datamodel has two main goals 1) Data models enable users of Pivot to create compelling reportsand dashboards without designing the searches that g...