Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
3,000 results
Sort by:
06-01-2024
06:29 AM
Hello follow Splunkers! We want to ingest Oracle Fusion Application (SaaS) audit logs into Splunk on-prem, and the only way to do this is through the REST API GET method. So, now that I cannot f...
Labels
- Labels:
-
administration
04-27-2022
11:47 AM
I need to identify each Active Directory Service Accounts that are being used for authentication for my work group. I am trying to create a working list of active and disabled accounts. I am usi...
Labels
- Labels:
-
audit
07-10-2020
12:19 PM
Hello
I have a problem with some .sqlaudit files
These files are being stored in the following path Z: \ audit \
Install a forwarder but Splunk doesn't seem to recognize these files.
Use the S...
- Tags:
- splunk SQL sqlaudit
Labels
- Labels:
-
using Splunk Enterprise
12-11-2018
01:34 PM
My company is beginning to use Power BI and we would like to get the audit logs from it into Splunk. I saw in the documentation that this gets audit logs from Exchange Online, SharePoint online and a...
09-06-2021
12:00 AM
I have been unable to get the universal forwarders to correctly collect the SMB Server audit logs. The inputs.conf file on the deployment server has the following stanza configured but there are no l...
Labels
- Labels:
-
inputs.conf
-
universal forwarder
-
Windows
Show results in replies (3)
-
...orrect the channel access string for Microsoft-Windows-SMBServer/Audit. Thanks for the s...
-
...he DS, but while other Event IDs are coming as expected the Event ID 3000 (SMBServer Audit) logs a...
-
Yep, the above stanza is correct. I was just impatient I think. The next morning I had pretty much ...
02-15-2019
01:57 AM
Hello,
Is there a way to validate the fields used in the datamodel by how compliant they are with the current setup?
I am trying to validate and fix data models to receive optimum results in the...
07-08-2019
05:35 AM
3 Karma
The post question did include the answer, but then it could not be marked as an answer, therefore I pushed the content into a second post that could be marked as an answer.
Show results in replies (7)
-
link textaudit-20200128-000002.txt (1 KB)
-
...o pull in audit logs, but you'll also gain access to amazing performance-related dashboards out of t...
-
This is a write-up of my experiences trying to integrate the SAP Security Audit Log into Splunk w...
-
...his is not an original unmodified SAP audit file.. cheers afx
-
Ok, this is different... When our systems where migrated, the audit log format stayed the same....
-
...eed to go back to them to confirm if they can change the audit log format to the what it was or c...
-
...ine breaker). I suggest opening an unmodified SAP audit log file in an editor where you can toggle t...
08-24-2022
07:37 AM
We are trying to audit/monitor administrative activity to Splunk. Is there some canned dashboards or searches that can be used to monitor/review elevated privilege activity? How do we m...
Labels
- Labels:
-
audit
03-14-2023
08:50 AM
Fairly new Splunk user here looking for Linux auditing solutions. I am running a disconnected version of Splunk Enterprise and thus cannot make use of the content pack which replaced the a...
Labels
- Labels:
-
Linux
