×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
dherrald_splunk
Splunk Employee
Member since: ‎04-14-2015
‎06-05-2020
Community Statistics
Posts 5
Solutions 1
Karma Given 3
Karma Received 5
Member Since ‎04-14-2015
Activity Feed
Topics I've Started
No posts to display.
View All

Re: BOTS: Where is the questions listing?

by Splunk Employee in All Apps and Add-ons
‎09-15-2019 05:21 PM
3 Karma
‎09-15-2019 05:21 PM
3 Karma
Please just email bots@splunk.com Thanks ... View more

Re: Import Splunk Enterprise Security and ESCU use...

by Splunk Employee in Splunk Enterprise Security
‎05-25-2019 07:12 AM
‎05-25-2019 07:12 AM
I downvoted this post because wrong and unnecessarily complex to boot. ... View more

Re: Import Splunk Enterprise Security and ESCU use...

by Splunk Employee in Splunk Enterprise Security
‎05-25-2019 07:11 AM
‎05-25-2019 07:11 AM
I downvoted this post because wring and unnecessarily complex to boot. ... View more

Re: Getting started with BOTS 2.0 - need help

by Splunk Employee in Splunk Enterprise Security
‎04-28-2019 10:10 PM
2 Karma
‎04-28-2019 10:10 PM
2 Karma
Just email bots@splunk.com and we will send you the v1 and v2 question sets. ... View more

Re: How do you edit a correlation rule in a datamo...

by Splunk Employee in Splunk Enterprise Security
‎11-05-2018 02:39 PM
‎11-05-2018 02:39 PM
Depending on the versions of the CIM and Windows TA, this base search might work for you: | from datamodel:"Change_Analysis"."Account_Management" | where result_id="4726" | where tag="delete" ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
Karma given to