The venerable old-skool Splunk forums are now closed. Feel free to search for old content here, but new posts are no longer supported.

Instead, please visit the thriving community at answers.splunk.com to ask and answer questions about your Splunk deployment and how to get the most out of it.

Forums: Posted by kangwnl

Topics 1–11 of 11

Topic	Author	Replies	Latest Post
Configuring Restricted access to events from one host In: SplunkAdministration (Not tagged) I need to restrict a user (userA) so that he can only access events from a particular host We are ...	kangwnl Posts	1	33 months ago...
How to index data sent to a Microsoft Exchange mail box In: SplunkAdministration (Not tagged) Thanks for the info. Splunk for IMAP looks like it should do the job We have a program called PRTG which monitors bandwidth utilisation. Within the application it is possible ...	kangwnl Posts	2	37 months ago...
Snapshot Fucntionality is not working In: SplunkAdministration (Not tagged) Hello When I want to save the results of a search and click on Snapshot, a window appears with the ...	kangwnl Posts	1	37 months ago...
Broke it in a few hours of playing with it In: SplunkAdministration (Not tagged) Thanks for posting Rayutsw. You are a life saver. I also had the problem where no queries would run. ...	richardstevenhack Posts	10	38 months ago...
Transforms.conf SOURCE_KEY In: SplunkApplications (Not tagged) In the transforms.conf for the Windows Management application there are some lines: [windows-eventid] SOURCE_KEY ...	kangwnl Posts	2	38 months ago...
Tags in Eventtypes.conf In: SplunkApplications (Not tagged) I have installed the "Splunk for Windows Management" application. I copied the eventtypes.conf file ...	kangwnl Posts	1	38 months ago...
Remote WMI causing 100% CPU utilisation on Windows Servers In: SplunkAdministration (Not tagged) There was a section of my post which didn't paste in too well. This part should be: When this ... I wondered if other people have seen this problem and more impotantly, found a solution for it. I ...	kangwnl Posts	–	44 months ago...
Language for capturing data from Windows Servers In: SplunkGeneral (Not tagged) Have you set [script://$SPLUNK_HOME\bin\scripts\splunk-wmi.py] disabled=0 in INPUTS.CONF?	pdesouza Posts	8	45 months ago...
Need to keep changing the Splunk Managment port In: SplunkGeneral (Not tagged) I am running Splunk on Windows Server 2003 . The installation of Splunk created a shortcut "Splunk Restart". ...	kangwnl Posts	1	45 months ago...
Spunk displaying dates in US format while I'm in Australia In: SplunkGeneral (Not tagged) Thanks for your help again. After re-indexing, the situation has improved. When I do a search, the histogram ... Thanks for your help . So far I have added SEARCH_TERM_TIME_FORMAT = %d/%m/%Y:%H:%M:%S SEARCH_RESULTS_TIME_FORMAT ... Thanks for the feedback. After I implemented this I noticed some issues. For example, if I do a ... All my Servers and workstations are based in Australia and configured for Australian regional settings ...	kangwnl Posts	6	45 months ago...
Unit of time for interval in WMI.CONF In: SplunkAdministration (Not tagged) I found some documentation which clarifies this. It is seconds. The example has a setting of 10 ... The WMI.CONF configuration file has the command interval = interval = <integer> * How often to ...	kangwnl Posts	1	45 months ago...

Forums: Posted by kangwnl

Description:

Permalink:

Splunk.com

Product:

Solutions:

Industries:

Partners:

About_us:

Support:

Services:

Resources:

Download