cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
arfee_splunker
Explorer
Member since: ‎10-13-2021
‎06-26-2023
Community Statistics
Posts 4
Solutions 1
Karma Given 3
Karma Received 0
Member Since ‎10-13-2021
Activity Feed
View All

Re: WARNING: Server Certificate Hostname Validatio...

by in Splunk Enterprise
‎02-28-2023 11:13 PM
‎02-28-2023 11:13 PM
Hi @richgalloway  Which file and stanza name is the edit required in ? ... View more

Re: Help with inputs.conf Stanza for the Azure AD ...

by in Getting Data In
‎07-13-2022 11:21 PM
‎07-13-2022 11:21 PM
Powershell (get-winevent -listlog *).logname revealed that the channel is simply called "AuthZAdminCh" ( despite hierarchical ordering under Microsoft-AzureMfa-AuthZ as presented in Event viewer ) The proven stanza  is as simple as : [WinEventLog://AuthZAdminCh]    ... View more

Help with inputs.conf Stanza for the Azure AD MFA ...

by in Getting Data In
‎07-11-2022 11:01 PM
‎07-11-2022 11:01 PM
Hi all Getting this message :  ERROR ExecProcessor [3700 ExecProcessor] - message from ""C:\Program Files\SplunkUniversalForwarder\bin\splunk-winevtlog.exe"" splunk-winevtlog - WinEventMon::configure: Failed to find Event Log with channel name='Microsoft-AzureMfa-AuthZ/AuthZAdminCh' I've tried numerous combinations in the stanza such as :  WinEventLog://Microsoft-AzureMfa-AuthZ/AuthZAdminCh WinEventLog://Microsoft-AzureMfa-AuthZ-AuthZAdminCh WinEventLog://Microsoft/AzureMfa/AuthZ/AuthZAdminCh The Windows Event Log chain for the AuthZAdminCh source is in the attachment.  Just not quite sure where I'm going wrong.  Appreciate some advice.   ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-26-2023 11:57 PM
Karma given to