cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Brenny
Explorer
Member since: ‎08-09-2023
‎12-04-2024
Community Statistics
Posts 5
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎08-09-2023
Activity Feed
View All

Re: Splunk Add-on for Microsoft Cloud Services - S...

by in Splunk Enterprise
‎12-04-2024 05:29 AM
‎12-04-2024 05:29 AM
The default one "mscs:azure:eventhub" doesn't work at all. For some other Inputs i used "ms:o365:management" which extracts for some Inputs. But we have several sources like AzureAD,Exchange and all the other MS products and it's not to clear to me which sourcetype I should use. ... View more

Splunk Add-on for Microsoft Cloud Services - Sourc...

by in Splunk Enterprise
‎11-19-2024 02:03 AM
‎11-19-2024 02:03 AM
Hi, we use the app Splunk Add-on for Microsoft Cloud Services version 5.3.1 on our HeavyForwarder. We ingest data from an eventhub which is splitted in a lot of eventhub names for different microsoft services (e.x. sharepoint, exchange etc.) The default sourcetype is "mscs:azure:eventhub" but the data isn't parsed with that. In some forums it was mentioned using the sourcetype "ms:o365:management". Someone had the same trouble finding the correct sourcetype? That app itself as a lot of config in props/transforms. Thanks   ... View more
Labels

Re: CBS Token authentication failed. Add-on for Mi...

by in Splunk Search
‎05-23-2024 11:35 PM
‎05-23-2024 11:35 PM
HI @HappySplunker . Yes, we found some failures within the Eventhub Names and also within the consumer groups. But now it is working. Thanks  ... View more

CBS Token authentication failed. Add-on for Micros...

by in Splunk Search
‎05-15-2024 07:19 AM
‎05-15-2024 07:19 AM
Hi, I got the following error message when trying to connect to an eventhub, Error occurred while connecting to eventhub: CBS Token authentication failed. Status code: None Error: client-error CBS Token authentication failed. Status code: None" Can someone help here? We have a HF in our network zone and want to connect to the MS eventhub via proxy. Which we configued within the app itself. We use the Add-on for MS Cloud Services version 5.2.2   Thanks ... View more

Re: Getting data in whit elasticsearch-data-integr...

by in All Apps and Add-ons
‎08-09-2023 12:03 AM
‎08-09-2023 12:03 AM
Hi, we facing the same problem. Did you get any help ? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎12-04-2024 08:51 AM
Karma given to
View All