Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
- Find Answers
- :
- About DashZentin
DashZentin
Explorer
Member since:
11-28-2025
01-16-2026
Community Statistics
| Posts | 12 |
| Solutions | 1 |
| Karma Given | 0 |
| Karma Received | 1 |
| Member Since | 11-28-2025 |
Activity Feed
- Posted Re: Local email address not accepted for alert action on Splunk Enterprise. 01-16-2026 01:31 AM
- Posted Re: Local email address not accepted for alert action on Splunk Enterprise. 01-15-2026 07:46 AM
- Posted Local email address not accepted for alert action on Splunk Enterprise. 01-15-2026 06:02 AM
- Got Karma for Re: Some AD groups are not displaying when setting up LDAP. 12-02-2025 05:43 AM
- Posted Re: Some AD groups are not displaying when setting up LDAP on Splunk Search. 12-02-2025 05:40 AM
- Posted How to specify an index when deploying the Splunk Universal Forwarder on a Windows domain? on Splunk Enterprise. 12-01-2025 05:57 AM
- Posted Re: This pool has exceeded its configured poolsize=0 bytes on Splunk Enterprise. 12-01-2025 03:53 AM
- Posted Re: This pool has exceeded its configured poolsize=0 bytes on Splunk Enterprise. 12-01-2025 03:43 AM
- Posted Re: Some AD groups are not displaying when setting up LDAP on Splunk Search. 12-01-2025 03:20 AM
- Posted This pool has exceeded its configured poolsize=0 bytes on Splunk Enterprise. 12-01-2025 02:58 AM
- Posted Some AD groups are not displaying when setting up LDAP on Splunk Search. 11-28-2025 03:00 AM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 0 |
01-16-2026
01:31 AM
Sorry I did not make myself clear. I meant changing the alert trigger action from "send email" to "run a script". Which would then run a Powershell script to send an email. Does that make sense?
... View more
01-15-2026
07:46 AM
Unfortunately I cannot use a standard email. Is there a way round? Maybe invoking a Powershell script?
... View more
01-15-2026
06:02 AM
We use local email addresses (eg admin@local). But the alert trigger "To" field does not accept that. Please advise.
... View more
Labels
- Labels:
-
configuration
-
using Splunk Enterprise
12-02-2025
05:40 AM
1 Karma
To answer my own question, the "Static member attribute" should be set to "member".
... View more
12-01-2025
05:57 AM
I plan to deploy the Splunk UF across all my Windows client PCs using SCCM. But I'm confused about the index settings. I want to send all the data to a specific index but when the UF installs it just defaults to the main index. Is there a way to specify the index during installation? As I don't want data going to main before I change it.
... View more
Labels
- Labels:
-
installation
12-01-2025
03:53 AM
So in that section I have Licenses Volume Expiration Status Splunk Enterprise Term License 12,288 MB 2027 FROM_THE_FUTURE Effective daily volume 0 MB auto_generated_pool_enterprise 941 MB / 0 MB
... View more
12-01-2025
03:43 AM
Hi, Yes it's set to "This server is configured to use licenses from the Enterprise license group". On the same page there's a section "Splunk Enterprise Term License stack" with volume 12,288 MB. The auto-generated_pool_enterprise shows 932 MB / 0 MB.
... View more
12-01-2025
03:20 AM
I used a ldp.exe (using the same bind DN as Splunk) and it returned the expected results (6 AD groups). Splunk only returns 3. The Group Base DN: "ou=Splunk,ou=Application_Groups,ou=Security Groups,dc=office,dc=local" The Group attribute name: "cn" Static member attribute: "memberof" User base DN: "ou=DomainUsers,dc=office,dc=local"
... View more
12-01-2025
02:58 AM
I had the free version of Splunk and after a while search was disabled since ingest was over 500MB. So I purchased a 12GB Enterprise license and installed it a few days ago. Now I'm getting warnings "This pool has exceeded its configured poolsize=0 bytes" every day. My daily ingest per day since I installed the license is 1.7GB. I am also still getting a warning "Daily indexing volume limit exceeded. Your Splunk deployment is subject to license enforcement". I thought this would go away once I installed the licence. I am using Splunk Enterprise 10.0.2 on Windows Server 2025. Thank you for your help.
... View more
Labels
- Labels:
-
installation
11-28-2025
03:00 AM
Hi all, I have setup an LDAP connection to my AD server. But when I click on LDAP Groups, not all groups are displayed (missing 2 out of 5). I have no static group search filter. The group that is missing has 1 user in. This user is in the same User base DN as the LDAP config (which also does not have a User base filter). This is a brand new install. I want to assign that AD group the Admin role in Splunk. I am using Splunk Enterprise 10.0.2 on Windows Server 2025. Thank you for your help.
... View more
Labels
- Labels:
-
other
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
01-16-2026
01:29 AM
|
