Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- About saad_siddiqi
saad_siddiqi
Path Finder
Member since:
05-09-2013
04-11-2023
Community Statistics
| Posts | 28 |
| Solutions | 0 |
| Karma Given | 17 |
| Karma Received | 2 |
| Member Since | 05-09-2013 |
Activity Feed
- Posted Re: Azure Event hub input error in Microsoft Cloud Services add on on All Apps and Add-ons. 03-01-2021 12:49 AM
- Karma Re: Azure Event hub input error in Microsoft Cloud Services add on for bhsakarchourasi. 03-01-2021 12:48 AM
- Posted Re: Azure Event hub input error in Microsoft Cloud Services add on on All Apps and Add-ons. 02-28-2021 03:19 PM
- Posted Re: Issue with INDEXED_EXTRACTIONS for Microsoft Exchange Server Message Tracking log files on Getting Data In. 09-08-2020 01:43 AM
- Karma Re: Help with eval and wildcards for twinspop. 06-05-2020 12:50 AM
- Karma Re: Feature Request: How to embed a dashboard (not a report) that is updated every hour in a webpage? for MuS. 06-05-2020 12:47 AM
- Karma How to create a dashboard with dynamic charts/panels based on the number of hosts and hide panels if there is no data? for jamesmonico. 06-05-2020 12:47 AM
- Karma Re: Why does splunk need to be installed as root? for jrodman. 06-05-2020 12:47 AM
- Karma Re: timechart OTHER column for linu1988. 06-05-2020 12:47 AM
- Karma Re: Splunk GUI Rest API Twitter Integration for aaronkorn. 06-05-2020 12:46 AM
- Karma Re: TimePicker: Limit the choices on a specifique Dashboard for jlhamlet. 06-05-2020 12:46 AM
- Karma Re: TIME_FORMAT in Epoch for dwaddle. 06-05-2020 12:46 AM
- Karma Re: Concurrent Historical Searches still set to old value for linu1988. 06-05-2020 12:46 AM
- Karma Re: Regex to ignore [\r][\n] for sbrant_splunk. 06-05-2020 12:46 AM
- Karma Re: What's the meaning of aggregration queue? for _d_. 06-05-2020 12:46 AM
- Karma Re: An instance of fill_summary_index is already running for app=search for MarioM. 06-05-2020 12:46 AM
- Karma Re: TIME FORMAT for gfuente. 06-05-2020 12:46 AM
- Karma Re: TIME FORMAT for Ayn. 06-05-2020 12:46 AM
- Karma Re: Time format having pipe "|" for kristian_kolb. 06-05-2020 12:46 AM
- Got Karma for Re: [indexer] Streamed search execute failed because: User 'nobody' could not act as:. 06-05-2020 12:46 AM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 | |||
| 0 |
10-24-2024
03:37 PM
Hey there! Have you tried executing this use case via no-code automation platforms? I know that Albato has an Integrator that can be used on the free plan. Furthermore, they have a library with several apps already available: https://albato.com/apps
... View more
04-30-2021
05:39 AM
Hi andygerberkp, It depends if there is certificate base authentication is configured in your case than yes you need to import the certificate otherwise please connect with your azure team configure service principal permissions properly that should resolve the issue. Thanks, Bhaskar
... View more
03-22-2021
04:51 AM
I have the same issue. It would be very nice with the possibility of directly changing the fontsize of things like axis ticks, titles, legend, etc. Other option I guess to use API or setup pdf report with pretty formatted graphs. But that seems like a lot of extra work.
... View more
09-08-2020
01:43 AM
Hi There, Were you able to get this sorted? I have a similar issue where my CSVs are getting translated as a bunch of EXTRA_FIELD_##
... View more
11-20-2019
05:54 PM
Hi There
Just wanted to check if anyone has tried running this app with Splunk 8.0 and/or Python 3 ?
I was looking to install this but not quite sure if it would work with Python 3.
... View more
10-29-2019
01:20 PM
Hi There,
Are there any plans on updating the Addon to be python3 compatible, with Splunk 8.0+?
Thanks
... View more
08-07-2014
07:59 AM
Making this change in distsearch.conf is the "Big Giant Hammer" solution to this...I suggest trying my2ndhead's steps below since that tries to address just the hiccup that caused this problem. This way you get rid of the bad-stuff that happened to be created instead of hiding the problem behind a setting change.
If you have big bundles, turning off the delta functionality will cause unnecessary overhead if the root cause was a minor hiccup in the bundle delta replication process.
... View more
08-14-2013
07:08 AM
Yes working very well.
NO_BINARY_CHECK=1
SHOULD_LINEMERGE=false
TIME_FORMAT=%Y%m%d|%H%M%S
TIME_PREFIX=\|(?=\d{8})
... View more
08-12-2013
04:51 AM
1 Karma
Hello Siddigi,
If you are referencing to the stanza
max_searches_per_cpu =
* The maximum number of concurrent historical searches per CPU. The system-wide limit of
historical searches is computed as:
max_hist_searches = max_searches_per_cpu x number_of_cpus + base_max_searches
* Note: the maximum number of real-time searches is computed as:
max_rt_searches = max_rt_search_multiplier x max_hist_searches
* Defaults to 1
then splunk would automatically know that your system has "N" number of CPU. As you mentioned that two more CPU's are added then now there would be "1*4+6". The number of CPU can be taken from OS/ENV variables.
It's like variables. But no where the number of CPU will written like a constant, in that case if you have 4 CPU and you mention in config it's 16 would it be correct? I guess you can get the gist.
Please have a look at the documentation:
http://docs.splunk.com/Documentation/Splunk/latest/Admin/Limitsconf.
... View more
08-07-2013
08:13 PM
For a self-service solution, maybe giving him read access to Splunk on Splunk would work; its Configuration File Viewer feature is great and it would allow him to see config files for search peers as well.
However, it's not clear whether some of the scripts in S.o.S might expose some undesirable functions; maybe someone from Splunk can comment on how safe it is to present S.o.S to non-admin users. On my installs it defaulted to "Everyone" read/write; I later changed that, but hopefully it is safe by default.
... View more
08-07-2013
04:24 PM
Where's the limitation you're hitting? You mention the searches are failing, but are we talking about failing because of timeout? How are they failing? If your search challenge is based on hardware, have you considered another search head or indexer?
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
04-11-2023
10:05 PM
|
