Hi,
We have a quite a "piggy backed" data coming from a system and extracting as
[mysourcetype]
SHOULD_LINEMERGE=false
INDEXED_EXTRACTIONS=CSV
FIELD_NAMES=Date,Time,EmployeeID,EmployeeName
T...
...sing their own deployment of SPLUNK and we don't want to piggy back or share the deployment as this now need to be managed by our operations team and slow down any upgrades we might want to do that b...
What is best practice for the HEC endpoint(s) for the "Phantom Remote Search" app in a clustered environment? Per the instructions in the url below for configuring the "Phantom Remote Search" a...
Can I piggy-back (insert) a Win32 setup.exe (windows program) onto a Splunk App, and use Splunk Deployment Server to deploy the Splunk app, and have the deployed Splunk app run a script that p...
I am using Splunk Cloud with the free trial period right now. I need to verify that we are able to use Splunk Cloud with Docker log-driver before we actually move forward with Splunk long-term. I tur...
Is it possible to limit the "export results" action to export only the fields that were presented to the client using FieldPicker module with StrictMode param set to "True"?
We have a single data simulator sending records to a socket, and a Splunk instance on a different server using that data. Can we have additional Splunk instances using that same data?
Hello folks
There is a way to configure which indexes belongs which splunk app. Is there also a way to configure in app to tell splunk per default which indexes to search through.
Let's say I ha...
Trying to create a useful CPU usage search, but coming up short. This search does not reflect what is actually being used for some reason:
index=perfstats host=servername | timechart avg("%_Privi...