...n the indexed event is correct, so there's no way to tell from the indexed event itself.
I have read, among other Splunk documentation, the text following the heading "How Splunksoftware assigns t...
When you have control of the logging in an application, what is the recommendation to make things as easy as possible for Splunk to digest/report on sets of tuples?
What should the log event(s) l...
I am trying to on board logs for Sage accounting software to Splunk, how do I go about it? I could not find any documentation, TA or app on this, how do I get Sage logs to Splunk? Is there any T...
Starting our journey into Splunk and need some help. I am trying to send and alert when a new version of antivirus is installed on our machines. I am monitoring the application windows event log, s...
Anyone here got some recommendations for forwarding Windows event logs to Splunk without installing the Splunk forwarder software? Is there a good tool to send Windows event logs as syslog events? O...
...rom different software) are written in those logs so different format can end up in the log field: raw text, json (escaped by docker) ... etc.
The first thing I'd like to do is to extract the log f...
Hello, I am trying to mask the password in the Windows event logs at index time but somehow my config is not working. Kindly advise. Configuration that I am trying : 1. Changes made in Props P...