×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
mibrahim8
Explorer
Member since: ‎09-25-2017
‎12-24-2021
Community Statistics
Posts 8
Solutions 1
Karma Given 3
Karma Received 2
Member Since ‎09-25-2017
Activity Feed
View All

Re: Cloning Data on a Heavy Forwarder

by in Getting Data In
‎09-07-2021 04:44 AM
‎09-07-2021 04:44 AM
Hello,  Here is a link [ https://mk-datalab.blogspot.com/2021/09/splunk-hf-advanced-data-routing-cloning.html ] of an Article that reference Splunk Documentation and emphasize on the above way in more details and more data routing & cloning scenarios.  Please check ! and feedback me !   Thanks, Mohamed Khalil ... View more

Re: How to hide dashboard parameters in URL Addres...

by in Dashboards & Visualizations
‎03-18-2020 02:58 AM
‎03-18-2020 02:58 AM
@mibrahim8 instead of Splunk Inputs use html input and set the token through Simple XML JS extension. Refer to one of my older answer which uses html date picker instead of Splunk time input: https://answers.splunk.com/answers/627432/jquery-datepicker-in-splunk.html ... View more

Re: Splunk Rest Request using browser - Unauthoriz...

by in Security
‎08-02-2019 08:17 AM
‎08-02-2019 08:17 AM
In Server.conf change the parameter below to * to enable all the connections please check the details in the following link https://docs.splunk.com/Documentation/Splunk/7.3.0/Admin/Serverconf crossOriginSharingPolicy = ... * List of the HTTP Origins for which to return Access-Control-Allow-* (CORS) headers. * These headers tell browsers that web applications are trusted at those sites to make requests to the REST interface. * The origin is passed as a URL without a path component (for example "https://app.example.com:8000"). * This setting can take a list of acceptable origins, separated by spaces and/or commas. * Each origin can also contain wildcards for any part. Examples: ://app.example.com: (either HTTP or HTTPS on any port) https://.example.com (any host under example.com, including example.com itself) * An address can be prefixed with a '!' to negate the match, with the first matching origin taking precedence. For example, "!://evil.example.com:* ://.example.com:" to not avoid matching one host in a domain * A single "" can also be used to match all origins * No default. ... View more

Re: How to forward indexed data to another splunk ...

by in Deployment Architecture
‎04-05-2018 06:12 AM
‎04-05-2018 06:12 AM
Are you trying to decommission the standalone? Could you allow the data to be aged off gracefully without adding new data to the standalone? If so, you could just add the standalone as a search peer and let the retention period expire. This way, you are not having to move the data over. Also if you migrate the buckets over by copying all of them, I am not sure they would replicate to the other indexers in the cluster. ... View more

Re: Splunk Enterprise 6.6.3 Scheduled PDF Delivery...

by in Reporting
‎09-25-2017 11:02 AM
‎09-25-2017 11:02 AM
Yes, It's SSL Related and it works now after using [ list_settings ] capability. Thank You. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎12-24-2021 11:53 AM
Karma from
View All
Karma given to