×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
gleblanc1783
Engager
Member since: ‎07-06-2011
‎06-05-2020
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 2
Member Since ‎07-06-2011
Activity Feed
View All

Re: Delete User or Roles?

by in Security
‎08-11-2011 07:34 AM
2 Karma
‎08-11-2011 07:34 AM
2 Karma
After deleting the user, they can no longer log in, however, the folder is still there (I'm assuming for backup purposes). If you no longer need any files in that users' directory, I would remove it. ... View more

Warning Message: Received event for unconfigured/d...

by in Splunk Search
‎08-10-2011 12:15 PM
‎08-10-2011 12:15 PM
We recently upgraded to 4.2.2. Since the upgrade - we've been receiving yellow warning messages at the top of the Splunk Web screen (text changed): Search peer "indexer1" has the following message: received event for unconfigured/disabled index='foo' with source='source::C:\foo.log' host='host::foo' sourcetype='sourcetype::foo-too_small' (1 missing total) We noticed that the index name was spelled incorrectly, and have since fixed the problem. Now, 24 hours later, we can't get the error/warn message to go away on our 3 search heads. We've restarted the search heads multiple times and no luck, it's still there. Can anyone provide any information on how to get rid of this? Thanks! ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
View All