The Cisco ACI Add-on for Splunk Enterprise provides these source types:
cisco:apic:health
cisco:apic:stats
cisco:apic:class
cisco:apic:authentication
And is CommonInformationModel (CIM) 4...
...agging with theCommonInformationModel or somewhere else in the flow of ingested data? - https://wiki.splunk.com/images/4/45/Splunk_EventProcessing_v19_0_standalone.pdf In the end here is what I w...
All,
We have Windows and Linux BIND DNS servers logging into one index in Splunk. Because of the way Windows logs domain names in DNS requests we are doing a search time extraction. If I want to s...
...dministrator. CommonInformationModel(CIM): TheSplunkCommonInformationModel (CIM) is a shared semantic model focused on extracting value from data. The CIM is implemented as an add-on that contains a c...
...hy this is occurring. Do we need to install the infblox app onthe indexer as well? This breaks SplunkCommonInformationModel (CIM) compliance and by extension Splunk Enterprise Security. Any a...