Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
64 results
Sorted by:
03-01-2019
08:41 AM
...og files from server 2 and server 3
My current input definitely will index duplicate data since all three servers will be hitting the network storage at a time, which may easily break s...
10-19-2017
12:49 PM
Pondering if the prohibited_traffic.csv lookup used by SA-NetworkProtection in Enterprise Security could be updated to have the src_ip and dest_ip columns to allow me to define acceptable usage of a...
09-07-2015
03:00 PM
Experts,
When I try to schedule PDF for a report, I get the following error after I set the cron
"Your network connection may have been lost or Splunk may be down." and all my search heads s...
12-07-2020
11:37 PM
...ndpoint and network activity. Is this where Enterprise Security is needed? Or is the answer that one can technically do it without Enterprise security but it would be tougher? Would splunk enterprise...
- Tags:
- Enterprise Security
Labels
- Labels:
-
alert action
04-02-2014
11:17 AM
We have some new logs we would like to import.
These logs seem to contain all the fields of network traffic, but it was requested to also show them as authentication. Is it best practice to tie i...
08-02-2017
07:04 AM
...ecords (ip, dns)
DHCP Records (ip,mac, dns)
Windows Security Authentication (nt_host, owner)
Network Identity Services (ip, owner)
The savedsearch just concatenates the lists, no m...
09-05-2019
03:06 AM
I want to add a new Security Domain called "Email" in Enterprise Security (ES) App and later map it to notables. Right now "Threat", "Network", "Identity" are among a few that are available. Is t...
12-04-2015
07:25 AM
Hi,
I'm a real Splunk novice, so apologies if this is a silly question. I've installed Splunk Enterprise, and ES in a test lab. Due to security, I'm unable to export any logs from the production network...
11-06-2019
06:00 PM
Hi, I have the Cisco ASA TA installed and things look great on my Enterprise Security search head when I search for the logs in the Search and Reporting app. But when I select ES and go to search i...
09-22-2020
06:11 PM
Hello, Im a newbie. Is there a point in using Splunk Enterprise Security in an air gaped network ? Or should I just use it in outside network ?
- Tags:
- Splunk Enterprise
Labels
- Labels:
-
search peer
-
workload management
