Hello All, I'm receiving a warning from our InfoSecapp that my data isn't CIM compliant. We have FortiGate syslogs, Windows Domain Controller Security logs, and Carbon Black Cloud logs b...
Hi folks,
I seem to have the remnants of a role, being called up, and failing to exist. The role is related to the Enterprise Security app, 'ess_analyst', although theapp has been since u...
...vents; and I have a pivot search that generates events. When setting up others, this worked fine, however, on the last two I've tried setting, it appears to not be generating events. The time frame is the l...
...nabled it, mostly just hoping it would shake something loose, but it has had no effect.
What are the things I could/should do to troubleshoot this issue?
Thanks!
Hi All!
My issue is I am not able to get the data in SplunkAppfor Active Directory (Topology, controllers etc). Below are the details which I have done so for.
Installed Enterprise Splunk f...
After configuring the proxy settings for downloading theSplunkfor Enterprise Security Intelligence Source data, I am still receiving errors indicating the download has failed. I know this is a r...
I used to have no issues with the mobile app on my iPad, but it mysteriously stopped working. No matter what I place in the user, password, or host name fields, I get Logon Error and a frowny face w...
Under the "Compliance" Dashboard in InfoSecAppforSplunkthere is a number of accounts (AD) that are monitored but that number is different from the accounts monitored under the Health tab. Is t...
when i try running a search on my Splunk enterprise in the search and reporting app i get the "insufficient permission to access this resource" message. i tried to click on the things u...
Hello, I am trying to troubleshoot sendemail.py since after an upgrate to red hat 9 our splunk stopped sending emails. I understand the command to use thesplunk python interpreter in the cli i...