Activity Feed
- Posted Re: DOD CAC/mod_rewrite on Security. 07-20-2022 12:42 PM
- Posted Re: How to creaate Splunk authentication with CAC / Smart Card and LDAP for Authorization? on Security. 07-20-2022 12:41 PM
- Posted Re: Using Splunk to Monitor Print Jobs on Getting Data In. 05-31-2022 12:01 PM
- Karma Re: XML Event Viewer Data Missing Message\Fields for VatsalJagani. 05-06-2022 04:51 AM
- Posted Re: XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 11:37 AM
- Tagged Re: XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 11:37 AM
- Posted Re: XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 10:13 AM
- Posted Re: XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 10:12 AM
- Tagged Re: XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 10:12 AM
- Posted Re: Why does rex in dashboard says missing terminator - #2? on Dashboards & Visualizations. 05-05-2022 07:06 AM
- Karma Re: Why does rex in dashboard says missing terminator - #2? for richgalloway. 05-05-2022 07:06 AM
- Tagged XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 04:55 AM
- Posted XML Event Viewer Data Missing Message\Fields on Dashboards & Visualizations. 05-05-2022 04:40 AM
- Posted Re: Why does rex in dashboard says missing terminator - #2? on Dashboards & Visualizations. 05-05-2022 04:31 AM
- Posted Why does rex in dashboard says missing terminator - #2? on Dashboards & Visualizations. 05-04-2022 11:38 AM
Topics I've Started
04-16-2024
12:22 PM
Here are the setting that you can enable on the log.conf to get more detail logging. $splunk_install_dir$/etc/log.conf category.X509=DEBUG
category.UiAuth=DEBUG Post the error message here or call support.
... View more
07-20-2022
12:42 PM
FYI- https://docs.splunk.com/Documentation/Splunk/9.0.0/Security/SetupCACPIV
... View more
05-06-2022
12:07 AM
1 Karma
@VTARNG_Paul - That's the problem with Windows I always face is that XML data (which is a new version) is not always a replica of PlainText (Legacy) format. My views: Collect PlainText - WinEventLog:Security, WinEventLog:System, etc Collect XML - Windows Defender Logs, etc These are just some examples and my personal views on which has richer field information. You need to look at the EventViewer and decide which one has the right fields that you need. I hope this helps!!! Consider upvoting/accepting answer if this helped!!!
... View more
05-05-2022
09:17 AM
@VTARNG_Paul - If that resolves your answer consider accepting the solution for the reply which is most relevant so in the future new community members can get benefit from that as well. You can do that by clicking on the "Accept as Solution" button at the bottom of the reply.
... View more