tracking who installed an app
Hi,Is there a log that would show who/when an app was installed on a search-head?
View Articlexi:include parts of the code for better overview
Hello,I am trying to get a better overview of the view's code (about 4k lines of code). Therefore I was trying to outsource parts of the code and call them via xi:include command, but get an error XML...
View Articlegeoip: any way to group by continent?
Maybe a feature request: How about a ... | geoip ip | stats count by ip_continent_name Where continent_name = Asia, Europe, ... etc.Thanks!
View ArticleHow to set timerangepicker as realtime by default?
Hello,I need set timerangepicker to appear like rt-30s by default in my dashboards. How do I do that? Can I?I've tried:<module name="TimeRangePicker" layoutPanel="panel_row1_col1" autoRun="True">...
View Articlehow do i use splunk to do web analytics?
I am a business user. I have a website and I want to track that site through splunk for web analytics. I want to do conversion, campaign and content analytics through weblog and page level tracking....
View ArticleHow to Display transaction result in a table
Hi, I have a search using transaction command mysearch | transaction startswith=start endswith=end and I am getting several events as one event, i would like those events to be displayed in a table.Is...
View ArticleRunning Saved Searches with Default Index _internal
HI, I did search query as follows: index=_internal sourcetype=schedulerAnd I get to see things in the resulting log that certain fields appears such as "run_time", "dispatch_time", and...
View ArticleUsing a result from one search in another search
I am trying to:Find a date/time of a certain event.Take that date/time from number 1. and use it to search for events only from that date/time forward.If the date/time from number 1 was September 1st...
View ArticleAre whitespace and delimiters counted against the license?
Are whitespace and delimiters counted against the license?
View ArticleOptimizing Dashboards performances, looking for the better design
Hi,Currently finalizing a Splunk application for my company, i am looking for the better way to optimize dashboards performances.My application manages monitoring raw data collected by various nagios...
View ArticleIndex Windows Robocopy Log files - Help!
I am sure this is something simple that i am over looking here but basically i want to monitor a directory with all robocopy log files in it, so that each file is a single new event so i can setup...
View ArticleHow to check the current number of my Scheduled Searches having queued up ?
Hi, I posted this new thread to be separately dealt with previous post of mine titled as follows: "Running Saved Searches with Default Index _internal." (Click on the following link:...
View ArticleBest way to set host key in Modular Inputs
I am building a Modular Input but would like to set the host behind the scene. I know that I can use Scheme Default but that sets the default for all stanza. [poll://Server1] port=4532...
View ArticleColouring Piecharts created using JSChart
I create a piechart that has these results in tabular form.Type count 1 Pass 0 2 Failed 14 3 Uncovered 0It has 3 sections, Pass, Failed, Uncovered. In the above example, Failed = 100% of the piechart....
View ArticleHow to include results in e-mail in raw format?
Hi everybodyIn Splunk 3.x we got the results attached to the email when running a scheduled a saved search in raw format. Unfortunately since Splunk 4.x these come in csv which is not that comfortable...
View ArticleHow DBX decides dbmon interval
Hello,I am using DB Connect to pull data from my DB. I had configured dbmon interval manually (interval = 30s, for example). However, DBX can adjust interval automatically. (interval = auto) My...
View ArticleRegEx - Get integer behind string
Hi guys, I'm absolutely new to RegEx and I'm very fascinated how powerfull RegEx is.I'm trying to get an integer value that is placed behind a specific string. This string and the integer value may...
View ArticleHow to integrate jquery ui
Hi ALL,Can somebody help me how to integrate a jquery ui in splunk ? like the accordion or the progressbar?Thanks in Advanced!
View ArticleSideView-Utils App IDownload
Hi,I'm trying to download the SideView_Utils pre-req for SoS. Unfortunately it appears that the SideViews tar file is "corrupt" - I can't install it through app manager an am not able to un-compress it...
View ArticlePDF report server and advanced xml dashboards
Hi,I need to schedule PDF Reports for both forms and advanced dashboards. I've installed PDF report server on Linux and I can now schedule delivery of forms. But I have two problems..."Schedule PDF...
View Article