×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
stamatoc
Engager
Member since: ‎01-24-2024
‎06-18-2024
Community Statistics
Posts 3
Solutions 0
Karma Given 2
Karma Received 0
Member Since ‎01-24-2024
View All

Re: Why is INDEXED_EXTRACTIONS=csv not working in ...

by in Splunk Search
‎06-18-2024 08:56 AM
‎06-18-2024 08:56 AM
Thank you a lot for your feedback . Indeed after hours of testing troubleshooting ... I put the props in UF as well and IT WORKED !  ... View more

Re: Filter which events to be ingested

by in Getting Data In
‎01-25-2024 01:19 AM
‎01-25-2024 01:19 AM
Thank you for your fast reply , I will try to test it and come back with an output ! ... View more

Filter which events to be ingested

by in Getting Data In
‎01-25-2024 12:43 AM
‎01-25-2024 12:43 AM
Hello everyone ,   I need to onboard a huge amount of logs which the 90% of them is unnecessary . My goal is to ingest only some keywords like "Login Failed", "User Login " etc . I have seen other articles  explaining how you can filter events by exclusion using NullQueue . But that doesn't fit in my case because I only know which event I want to ingest using particular keywords.  I am looking forward for a hint on how can I procced on that if it's possible .  Thank you all 😊 ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎06-18-2024 12:17 PM
Karma given to
View All