×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
tioumen9x
Engager
Member since: ‎11-16-2017
‎06-05-2020
Community Statistics
Posts 5
Solutions 0
Karma Given 1
Karma Received 0
Member Since ‎11-16-2017
Activity Feed
View All

Re: Feature request: set a proxy for alert_msteams

by in All Apps and Add-ons
‎02-25-2019 11:54 PM
‎02-25-2019 11:54 PM
Is there any git repo where you posted your script ? Thanks. ... View more

Re: Identify users and searches searching over all...

by in Splunk Search
‎08-02-2018 01:11 AM
‎08-02-2018 01:11 AM
a bit more accurate, and as we are linked with the LDAP we are able to have specific information related to the user (i.e. email ...) index=_audit action="search" search="" NOT search="'|" user!="admin" user!="splunk-system-user" apiStartTime='ZERO_TIME' apiEndTime='ZERO_TIME' | table _time, user, apiStartTime, apiEndTime | stats count by user | table user, count | sort - count | join type=left user [| rest splunk_server=local /services/authentication/users/ | table email, title | rename title as user] | table user, count, email ... View more

Re: Identify users and searches searching over all...

by in Splunk Search
‎08-01-2018 08:31 AM
‎08-01-2018 08:31 AM
This works for us index=_audit action="search" search="*" | where user!="admin" | table _time, user, apiStartTime, apiEndTime | search apiStartTime='ZERO_TIME' apiEndTime='ZERO_TIME' | timechart limit=0 count by user We are now able to alert these users directly thru email. ... View more

Is there a github repo ?

by in All Apps and Add-ons
‎01-04-2018 03:26 AM
‎01-04-2018 03:26 AM
Hello, Nice app ! Is there a github repo to request changes in the code ? Thanks ... View more

IBM Datapower app

by in All Apps and Add-ons
‎01-03-2018 02:13 AM
‎01-03-2018 02:13 AM
I'm using the IBM Datapower app and as we have to manage several instances of the appliances (non-prod and prod) I'm wondering if there is a way to add several instances. In the "Add-on settings" tab I can only have one URI. Thanks for your help. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma given to
View All