cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
rohit1793
SplunkTrust
Member since: ‎04-10-2019
‎06-02-2022
Community Statistics
Posts 8
Solutions 2
Karma Given 3
Karma Received 1
Member Since ‎04-10-2019
Activity Feed
View All

Re: How do I find the credentials to connect Splun...

by SplunkTrust in Getting Data In
‎04-04-2022 12:00 PM
‎04-04-2022 12:00 PM
Hey,   1. You can try your login password as it seems Splunk taking SSO sign in. 2. If that doesn't work, you can create AD account and get necessary splunk access to that account.   ... View more

Re: Splunk Add-on for 0365: Why am I receiving Inv...

by SplunkTrust in Monitoring Splunk
‎04-04-2022 04:40 AM
‎04-04-2022 04:40 AM
Hey @jadengoho ,  This is due to access issue ,After creating token/ Tenant ID , That Token required the read permission of the API graph.  Below the excel sheet you can refer and ask the AD team to provide the read access to the token.  https://docs.google.com/spreadsheets/d/1YJAqNmcXZU-7O9CxVKupOkR6q2S8TXriMeLAUMYmMs4/edit#gid=0 One last things, if all the permission are up to mark check if the proxy is configured. ... View more

Re: Link Timestamp from data to Time picker

by SplunkTrust in All Apps and Add-ons
‎04-04-2022 03:58 AM
1 Karma
‎04-04-2022 03:58 AM
1 Karma
Hi  @Shadolu , [<spec>] TIME_PREFIX = Timestamp --change as per your raw data MAX_TIMESTAMP_LOOKAHEAD = 21 TIME_FORMAT = write regex as per your data , if timestamp is start of your event[%Y-%m-%d %H:%M:%S.%Z] Yes this is possible, you have to change the parameter in  props.conf file. let's say you have data coming in xyz sourcetype, you have to Add above parameter.  ... View more

Re: How do I find the credentials to connect Splun...

by SplunkTrust in Getting Data In
‎04-04-2022 03:48 AM
‎04-04-2022 03:48 AM
Hello    @xinyizhang , 1. As a prerequisite to connect the tableau with Splunk  , Download the Splunk ODBC connector for splunkbase . (https://splunkbase.splunk.com/app/1606/ ) 2. Login to tableau , On right side click on connect, you will see a form will pop up with Splunk Creds.  3. Add the details, Sever as splunkXXX.xx.xx. , Port will be 443  4. User should have access of Splunk URL. 5. Once connection is successful, you can see all the reports as a table in Tableau.   ... View more

Re: issue with VMSTAT data coming from OS logs

by SplunkTrust in Getting Data In
‎02-16-2022 06:42 AM
‎02-16-2022 06:42 AM
There is a command multikv, it works for tabled data like we get from Unix/Linux machines: index=foo host=abc* sourcetype=vmstat | bucket _time span=5m | multikv fields | stats avg(memUsedPct) as MemoryUsed by host ... View more

Re: Splunk App for Infrastructre

by SplunkTrust in All Apps and Add-ons
‎07-28-2020 08:08 AM
‎07-28-2020 08:08 AM
II am facing the same issue, did you found any workaround for this issue? ... View more

Password protected reports from Splunk

by SplunkTrust in Security
‎03-23-2020 10:01 AM
‎03-23-2020 10:01 AM
Hi Folks, Hope you are well!! We want to password protect the Splunk reports while delivering to user emailbox so that only users who having key they can access it, can we do it on Splunk or Do we have any Splunkbase Application for this? ... View more
Labels

Help with extracting the fields and related data ...

by SplunkTrust in Getting Data In
‎10-07-2019 01:07 AM
‎10-07-2019 01:07 AM
Hi All, Can you please help me to extract the fields and related data from vmstat logs which are coming into splunk,Below the logs lines: memTotalMB memFreeMB memUsedMB memFreePct memUsedPct pgPageOut swapUsedPct pgSwapOut cSwitches interrupts forks processes threads loadAvg1mi waitThreads interrupts_PS pgPageIn_PS pgPageOut_PS 7000 xx8 xxx5 9.4 90.6 1561978416 100.0 85616943 4002987866 3965557908 66831877 250 3251 11.04 9.04 27902.02 48.24 2132.66 ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎06-02-2022 10:49 AM
Karma from
View All
Karma given to
View All