I apologize if the title isn't very descriptive of the question I have, was not sure how to best frame it. For a setup with numerous splunkforwarders forwarding to two indexing servers, and g...
Hi All, One of our new client interested to use Splunk tool to monitor their application. To setup Splunk for their application what are the initial details we need to ask to Client to c...
...re accessing concurrently We had some internal discussions, and I wanted to understand if we can use less resources than the mentioned below to run Splunk+ES, and if any one is running a similar setup...
I have following fields in my splunk radioStatus,bitChange,DeviceChange,Temp,Humidity.
index=test | table
radioStatus: Running or Down
bit Change: 0=Closed & 1=Open
deviceChange 0=Norma...
I am setting up SAML authentication to Okta in Splunk Enterprise 6.3. Attribute query URL, Username, and Password are required for setup. I am having trouble finding the information needed to p...
Hello guys, Does Splunk CIM implementation (after app setup) require admin permissions? If yes is it needed all the time or it's majorly creating event types/tags as seen at https://d...
...ttps://splunkbase.splunk.com/app/3612/
https://splunkbase.splunk.com/app/1854/
are two examples. I was initially able to load the setup and take screenshots of all of the requirements but going b...
In our setup we have a searchhead cluster with no search affinity (site0) and a multisite indexer clusters (site1/site2). Now its time for some expansion and although we already expanded the s...