Activity Feed
- Posted Re: Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 01-12-2021 01:40 AM
- Posted Re: Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 12-01-2020 01:55 AM
- Posted Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
- Tagged Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
- Tagged Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
- Tagged Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
- Tagged Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
- Tagged Splunk Security Essentials : How to set content/use-case as active on All Apps and Add-ons. 11-25-2020 07:29 AM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 |
01-12-2021
01:40 AM
Hello Johan, Thank you for your reply. It did work finally on the production instance. It seems that even with the data source set as available under Data Inventory, the associated SPL search should return results otherwise the status will remains as "Needs data". I'm marking your reply as a solution. Thanks again.
... View more
12-01-2020
01:55 AM
Hello, Does anybody has any idea about this please ? Thank you.
... View more
11-25-2020
07:29 AM
Hello, I've been trying this app Splunk Security Essentials on a test instance of Splunk and I have difficulty setting content/use-case as "active". My main goal is to have a representation of all my existing production alerts on Mitre Att&ck matrice. I created use-cases in "Custom Content" and enabled exiting ones. On the "Manage Bookmarks" page I have few use-cases, all "Successfully Implemented", but when on the Mitre Overview page none is active, all content have "needs data" status : I'm sorry if I'm missing something obvious and thank you in advance for your support. Kind regards.
... View more
Labels
- Labels:
-
dashboard
