I recently installed theSplunkAdd-onfor InfoBlox as a fairly new Splunk user, and there seems to be a conflict between that and theCiscoISEadd-on. When I click onthe Infoblox app in the s...
When I try to use SplunkAdd-onforCisco Meraki for my Access Points I get this API error in the logs: meraki.exceptions.APIError: networks, getNetworkEvents - 400 Bad Request, {'errors': ['p...
I have been trying to figure out why theSplunk App forCiscoISE quit working after I updated theSplunkAdd-onforCiscoISE, but I am not having any luck. I have verified that CiscoISE is still s...
EDIT : New information at the end.
When I run a search over our ASA, all the fields defined by thesplunk_ta_cisco-asa work except one. I have severity lookups and vendor classes, but I have n...
...owershell\test\check_service.ps1"
schedule = 30 */12 * * *
sourcetype = CheckService
Splunk is running onthe Windows HF with the same account I'm doing thetroubleshooting with. The execution policy for...
I have installed a Cisco Networks App forSplunk Enterprise in order to monitor theCisco devices. However, I installed everything (Apps in Search Head and add-ons in both SH and indexers), but no r...
Is SplunkCiscoISE app and SplunkCiscoISEAdd-on already map to Splunk CIM by default? If not, is there any documentation that we can use to map it and be CIM compliant?
Hi All,
I have been having issues with getting logs into splunk from our cisco fwsm. When I open up wireshark I can see network traffic coming in but it does not hit any index. To prove this the...
Hello, Ciscoadd-on v. 2.7.3 slows a lot our Splunk Enterprise production platform when it is activated. The research "index=xxxxx sourcetype=cisco:ios" goes from a few ms on our development p...