cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
lespinosas
Explorer
Member since: ‎08-23-2021
‎12-05-2024
Community Statistics
Posts 6
Solutions 0
Karma Given 0
Karma Received 2
Member Since ‎08-23-2021
Activity Feed
Topics I've Started
View All

Re: Reports say first scheduled run not completed,...

by in Reporting
‎12-05-2024 11:42 AM
‎12-05-2024 11:42 AM
Hi! Did you ever experience this message from clicking the "View results in Splunk" link included in the email? I was trying to edit the dispatch.ttl to make the search life a little bit large, but did not succeed.  I was wondering if the action.email.ttl is the one for this issue. Regards 🙂 ... View more

SentinelOne integration

by in All Apps and Add-ons
‎07-15-2024 12:24 PM
2 Karma
‎07-15-2024 12:24 PM
2 Karma
I have problems with the integration of SentinelOne and Splunk Cloud. I'm using the app https://splunkbase.splunk.com/app/5433 and try 2 different SentinelOne consoles (set the URL and Token for each console). I don't know if I am missing something or what is the problem. Can some one help me to understand this integration?  - Under API Configuration we have the URL usea1-***.sentinelone.net  and Token (maybe the token is not the correct one? Where can I find it?) - Under Inputs set the destination index for the logs. - Under Base Configuration I can't set the index created (the same as the Inputs tab) Btw, I don't have the administration of SentinelOne console. ... View more

Re: (Beginner) Splunk with Sentinelone

by in All Apps and Add-ons
‎07-15-2024 12:09 PM
‎07-15-2024 12:09 PM
Hi, did you succed with this integration? I'm in the same situation... ... View more

Re: sentinelone app no longer able to connect to s...

by in All Apps and Add-ons
‎07-10-2024 11:58 AM
‎07-10-2024 11:58 AM
Thanks @Dallastek1  Did you use just this app in Cloud or also another app (IA, TA add-ons) on Heavy Forwarder?   ... View more

Re: SentinelOne App for Splunk Error: "cannot unpa...

by in All Apps and Add-ons
‎07-03-2024 04:06 PM
‎07-03-2024 04:06 PM
Hi  Which is the API Token and URL did you guys use? I try 2 different and did not have success. I'm using Splunk Cloud with the App for SentinelOne (not the TA or IA), is that ok?   Regards ... View more

Re: sentinelone app no longer able to connect to s...

by in All Apps and Add-ons
‎07-03-2024 11:24 AM
‎07-03-2024 11:24 AM
Hi, please can you help me as well? Hi @Dallastek1  Which app did you install in Splunk Cloud for the integration? Did you use a HF as well?   I tried to configure more than one "API Key" and URL but just don't succed.   Can you explain the steps you take? Regards. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎12-05-2024 04:16 PM
Karma from
View All