×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
yrajah
Explorer
Member since: ‎10-13-2011
‎06-05-2020
Community Statistics
Posts 5
Solutions 0
Karma Given 2
Karma Received 4
Member Since ‎10-13-2011
Activity Feed
View All

Re: New Real Time Alerts not working

by in Alerting
‎07-24-2013 02:17 AM
2 Karma
‎07-24-2013 02:17 AM
2 Karma
I did have further problems with this, and I now believe I found the cause. In my case I think it was simply because I had too many real time searches running, and was hitting my my limit. I believe that you can change the limit in limits.conf as long as your hardware is up to the job. I just cleaned up some stuff, and changed some real time searches/alerts to a daily report and have not had any issues since. http://docs.splunk.com/Documentation/Splunk/5.0.3/Admin/Limitsconf http://docs.splunk.com/Documentation/Splunk/5.0.1/Search/Realtimeperformanceandlimitations ... View more

Re: New Real Time Alerts not working

by in Alerting
‎05-03-2013 03:49 AM
‎05-03-2013 03:49 AM
Hello, I still get issues with real time alerting every now and then. The last one I had (maybe not exactly the same as this) was resolved by a restart of the splunk services. I would be interested to know if this fixes your problem? ... View more

Re: Splunk App for Active Directory - Universal Fo...

by in All Apps and Add-ons
‎03-15-2013 07:57 AM
‎03-15-2013 07:57 AM
Thank you for the reply. Is there a scheduled date for the next release? ... View more

Splunk App for Active Directory - Universal Forwar...

by in All Apps and Add-ons
‎03-15-2013 03:03 AM
‎03-15-2013 03:03 AM
Hi, Just noticed that "The Splunk App for Active Directory does not currently work with Splunk universal forwarder versions 5.0 and later". Does anybody know when it will be supported? Many thanks. ... View more

New Real Time Alerts not working

by in Alerting
‎09-21-2012 04:12 AM
2 Karma
‎09-21-2012 04:12 AM
2 Karma
Hello, We have a number of real time alerts that are working fine (that are being generated by certain Active Directory events via the Universal Forwarder installed on the DC), but when I try to create any new real time alerts they do not seem to work; I am not receiving the email, and the Alert counter on the Searches and Reports page remains on 0. When I run the search manually for the last 15 minutes, I get results that I would expect, so the search parameters seem to be ok. I even cloned a working rule, and created an event. The original alert triggered, but the new cloned one did not 😞 ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
Karma given to
View All