×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
nbteal
Engager
Member since: ‎11-01-2022
‎06-06-2024
Community Statistics
Posts 2
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎11-01-2022
Activity Feed
View All

Re: Validate Splunk Forwarder Status

by in Getting Data In
‎11-14-2022 09:14 AM
‎11-14-2022 09:14 AM
@gcusello  Thank you for the information. Was tracking splunk cant monitor systems that arent connected to the server. Was hoping it may be able to perform a compare against a lookup file and known "clients/forwarders". I'll take a look at the app you suggested. Thank you again for your time and have a nice day. ... View more

How to validate Splunk forwarder status?

by in Getting Data In
‎11-14-2022 08:45 AM
‎11-14-2022 08:45 AM
Our organization currently hosts a "Splunk Health" dashboard. This dashboard has a panel that shows the heartbeat interval and overdue status of all the known splunk forwarders. However, what this dashboard does not have is a panel that can identify any valid endpoint on network that does not have the splunk forwarder installed. Problem Statement: Add panel to dashboard that depicts any valid endpoint without Splunk forwarder installed. I am fairly new to splunk. However, I thought that the best way to tackle would be to pull a csv from AD of all valid endpoints (WS, Servers, etc) and host as a lookup table file within Splunk. Then identify a query that compare current "clients" in Forwarder Management against the new lookup table file (AD output). The results would show me any endpoint that is not currently a client within Forwarder Management. Any help would be appreciated. Thank you. ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎06-06-2024 06:21 AM
Karma given to
View All