My company is beginning to use Power BI and we would like to get the auditlogs from it into Splunk. I saw in the documentation that this gets auditlogs from Exchange Online, SharePoint online and a...
The post question did include the answer, but then it could not be marked as an answer, therefore I pushed the content into a second post that could be marked as an answer.
I just noticed that our Redhat splunk servers are missing auditlog data for users logging in to Splunk.
For example, this query no longer returns data:
index=_audit action="login attempt" "i...
Hello
I have a problem with some .sqlaudit files
These files are being stored in the following path Z: \ audit \
Install a forwarder but Splunk doesn't seem to recognize these files.
Use the Splunk...
Hello,
Is there a way I can configure the lea-loggrabber-splunk to collect Checkpoint's auditlog(audit.log), instead of the default collection on traffic log(fw1.log)?
I am using the lea-log...
Hi All, As indicated here (https://community.splunk.com/t5/Getting-Data-In/Why-am-I-unable-to-monitor-SPLUNK-HOME-var-log-splunk-audit-log/m-p/506185#M86203), I have been able to get the audit.log f...
We are trying to pull back audit files back into Splunk. We are running into a couple of issues:
1.) Parsing the log file for the datetime/transaction/etc is unbelievable hard to decipher. Has a...
Hi All,
I am new to splunk. We are using splunkcloud and version 8.2.
We are exploring how to ingest gitlab auditlogs in splunk.
I checked gitlab project audit add on is not a...
...ith parsing for on-prem Jira auditlogs (atlassian-jira.log and atlassian-servicedesk.log)? Or any Splunk guidance I can give the Jira admin to help make logging better. So far they have told me they d...