×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
LiorG
Engager
Member since: ‎10-25-2020
‎02-25-2021
Community Statistics
Posts 3
Solutions 0
Karma Given 1
Karma Received 1
Member Since ‎10-25-2020
Activity Feed
View All

monitor security windows events with syslog

by in Getting Data In
‎01-27-2021 01:43 AM
‎01-27-2021 01:43 AM
hi there, i monitor windows security event log from the DC with RAW SYSLOG. i can see in Splunk the raw data (without the default Syslog RFC's) also i can see that the data as xml view. When i downloaded the Splunk add on for windows i configured the WinEventLog source type to my UDP data input (where only windows  security event log from the DC is delivered) i can see that the fields are extracted with the XML headers  example: System.EventId EventData.LogonType   I Can only Receive syslog  thanks in advance ... View more
Labels

Re: escape backslash in dynamic search

by in Splunk Search
‎10-25-2020 10:28 PM
‎10-25-2020 10:28 PM
hey thanks for the answer. this i already know. my dashbord in based many diffrent drilldowns, when the value that i want to drilldown in a other search may contain a backslash. thats why i cant know where will it be in the string   example: 200808131227.m7D/CKVem009817@Here.US.EDU   ... View more

escape backslash in dynamic search

by in Splunk Search
‎10-25-2020 06:10 AM
1 Karma
‎10-25-2020 06:10 AM
1 Karma
hi there, i created a dashbord with drilldown values with backslash. how can i escape those backslash to ged values in my search ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎02-25-2021 07:08 AM
Karma from
View All
Karma given to
View All