Time Zones in Splunk Part 1 In a Splunk PS deployment, I come into the office on Monday mornings and see something like the following when looking at my contact's desk: Three devices, all connected to the network, display three different times The customer's organization definitely operates its IT infrastructure in only one country,
As Splunk PS Consultants, we often perform so-called health checks, in which we examine the customer's Splunk installation and document the opportunities for optimization. One of the issues that occurs in almost every health check is the sub-optimal configuration of source types. This sourcetype configuration defines very important aspects of processing incoming data in
In some cases, we don't know exactly what form of presentation in a dashboard will work best for users. Sometimes it depends on what previous knowledge the users have on the current topic, or on the time range chosen. Especially in interactive dashboards with various choices (input elements), it is often unpredictable which data
Splunk Universal Forwarders can be installed on Windows in a number of ways, including through software distribution mechanisms common in the Windows world, such as SCCM. However, in some situations, e.g. during a PoC, it is not possible or appropriate to include the installation of the UF directly in the regular software distribution. In
XDR is currently one of the "hot" topics in cyber security: Providers are presenting new solutions and offers, and as is so often the case, the new technology is presented as the ultimate solution. This is reason enough to take a look at the background and illuminate where the limits and possibilities lie with