...nowledge object, your role must have write permissions for the app to which the knowledge object belongs and the knowledge object itself.
http://docs.splunk.com/Documentation/Splunk/7.1.0/Knowledge/D...
Hello Everyone,
We are receiving PaloAlto Cortex XDR logs to splunk via syslog in CEF format as given in the below link:
https://docs.logrhythm.com/docs/devices/syslog-log-sources/syslog-palo-a...
...ransforms.conf
In the lookup definition, for permissions, it says that object should appear in all apps and everyone has read and write permissions.
I performed all the above as the admin of a single i...
...ettings for dashboard are set as:
- Owner= admin
- App = search
- Display for = all apps
- I selected clone to inline search
- I setup perms to be:
Everyone=Read
admin= write
Xml u...
Users would like to share their own dashboard to a group, which capability should I add to their role?
Is it possible with version 6.2.3 or 6.5.2 ?
Thanks.
In splunkd.log I see so many of the following warning message:
00-00-0000 00:08:00.000 WARN AuthorizationManager - Unknown role 'everybody'
Why am I seeing so many of these messages?
Hi Everyone,
I am trying to upload CSV file to a certain index and a certain sourcetype (already exist in Splunk) with a python script. I have already installed Python SDK Splunk and I am using P...
I am using DB Connect to insert some data into an index. Query 'A' inserts data in mkv format, and sourcetype 'ItimProcessCompletion'. I am putting a field in called W_EVT that has value W_EVT=I...
...eleases, I need 5 individual for each selected release.
For example
The multiselect lists , 7.3, 7.2, 7.1, 7.0 etc
My selection is 7.3 and 7.1, I would need two different panels to be d...
I have a saved search in Splunk. What is the exact URL I need to give to the other team so they can access the saved search along with the result?
The saved search runs for every 30mins and r...