×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
not_for_sale_b
New Member
Member since: ‎07-13-2023
‎07-13-2023
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎07-13-2023
Activity Feed
Topics I've Started
No posts to display.
View All

Re: Splunk query to check which user disabled/enab...

by in Splunk Search
‎07-13-2023 08:36 AM
‎07-13-2023 08:36 AM
Oh my god finally, someone found it.  Here is a revised query that works a little better and shows the "files" (searches) enabled by a particular user and decodes them to make them easier to read.     index="_internal" sourcetype=splunkd_ui_access method=POST | eval file=urldecode(file) | stats values(file) by user ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎07-13-2023 11:56 AM