Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- About LintuMathews
LintuMathews
Explorer
Member since:
04-11-2013
06-05-2020
Community Statistics
| Posts | 11 |
| Solutions | 1 |
| Karma Given | 0 |
| Karma Received | 2 |
| Member Since | 04-11-2013 |
Activity Feed
- Got Karma for Query to find the latest time entry for lastlogonTimestamp from AD logs for a list of users?. 06-05-2020 12:47 AM
- Got Karma for Re: Query to find the latest time entry for lastlogonTimestamp from AD logs for a list of users?. 06-05-2020 12:47 AM
- Posted Re: How to find employee manager up to levels above until CEO using dbquery? on Splunk Search. 04-05-2018 02:31 PM
- Posted How to find employee manager up to levels above until CEO using dbquery? on Splunk Search. 04-03-2018 09:57 AM
- Tagged How to find employee manager up to levels above until CEO using dbquery? on Splunk Search. 04-03-2018 09:57 AM
- Tagged How to find employee manager up to levels above until CEO using dbquery? on Splunk Search. 04-03-2018 09:57 AM
- Tagged How to find employee manager up to levels above until CEO using dbquery? on Splunk Search. 04-03-2018 09:57 AM
- Posted Re: Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:40 AM
- Posted Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:38 AM
- Tagged Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:38 AM
- Tagged Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:38 AM
- Tagged Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:38 AM
- Tagged Palo Alto Networks App for Splunk: Why are tstats reports for Traffic not displaying and it seems summary indexing is failing? on All Apps and Add-ons. 01-04-2016 11:38 AM
- Posted Re: Advise a rex for domain\username example windows\mathews on Splunk Search. 04-10-2015 02:11 PM
- Posted Re: Advise a rex for domain\username example windows\mathews on Splunk Search. 04-09-2015 11:53 PM
- Posted Advise a rex for domain\username example windows\mathews on Splunk Search. 04-09-2015 10:57 PM
- Tagged Advise a rex for domain\username example windows\mathews on Splunk Search. 04-09-2015 10:57 PM
- Posted Re: geoip command stops working after upgrade to 6.1.1 - GeoIP database file 'GeoLiteCity.dat' does not exist! on Archive. 08-27-2014 05:17 PM
- Posted Re: Query to find the latest time entry for lastlogonTimestamp from AD logs for a list of users? on Splunk Search. 07-30-2014 04:21 PM
- Posted Query to find the latest time entry for lastlogonTimestamp from AD logs for a list of users? on Splunk Search. 07-30-2014 02:33 PM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 1 |
04-05-2018
02:55 PM
More than one level is assumed, no one really has a flat organization. It doesn't make any difference to my advice. Missing data is also normal, but not your problem. In fact your dashboard might even inspire people to start fixing the source data.
... View more
01-04-2016
11:59 AM
The Overview is using real-time searches so you should be seeing data as long as data as flowing into Splunk.
https://answers.splunk.com/answers/215077/any-performance-issues-with-all-the-real-time-sear.html
Everything else is based on data model acceleration.
We have seen tstats delayed significantly. This may or may not be based on your volume of PAN data. You might want to ping PAN about tuning although we have given up and worked around it using summary indexing although Palo Alto will tell you that the latest version of the app is better tuned for data model acceleration -- it was many months of frustration.
https://answers.splunk.com/answers/326382/palo-alto-networks-app-for-splunk-data-model-frequ.html
https://answers.splunk.com/answers/318950/can-you-disable-the-acceleration-of-all-data-model.html
... View more
04-10-2015
02:11 PM
I was hoping something like this would work, this was generated through the erex , but needs some adjustments i guess
rex "(?i)windows\(?P[^\]+)"
... View more
07-30-2014
04:21 PM
1 Karma
Thanks, I used this query and it works:
index=msad lastLogonTimestamp | stats latest(lastLogonTimestamp) by employeeID
... View more
08-19-2015
02:12 PM
Does this still stand for the current version of the SA-ldapsearch?
... View more
