...nterprise, you do this inSplunkWeb or by editing the inputs.conf configuration file. If you have Splunk Cloud, use SplunkWeb to define source types.
And then on a Universal forwarder I have a...
...t for the end-user of the TA within the TA itself?
In the Map to Data Model tab of the Splunk Add-On Builder, I can only see the ability to create EventTypes but not map tags to the eventtype....
...ight after getting Splunk Enterprise installed on their local machine. It can be daunting to log into Splunk for the first time and know what the heck you should do. A person can get through the in...
...tored at Search Heads and later somehow migrated to indexers. I can edit them via splunkweb UI directly. But Web UI won't show any source typesdefined in my indexers.
If I want to achieve selective p...
I installed the latest release of the Qualys App (the one officially supported by Qualys) and the TA for it.
It would seem that all of the dashboards are driven off of eventtypes that aren't define...
...eed to add all metaData fields to each event within of the same file. example for input:
Output-Splunk table, row for each event + add the metadata columns to each row.
do it for all f...
...aving to write complex search queries. The Splunk Common Information Model (CIM) app delivers a common lexicon of field names and eventtypes across different vendor data sources making t...
...ection connects the most common data types and data sources to guidance on how you can use that data inSplunk today. Simply curious what else is possible inSplunk? Review the high-value, Featured A...