Certificates from Let's Encrypt for Splunk Web In this blog post you will learn how to use certificates from Let's Encrypt for Splunk Web. We recommend you watch the accompanying YouTube video „Let's Encrypt für Splunk Web - SSL-Zertifikate in fünf Minuten“ for visual examples and a more detailed explanation (only available in german).
Graphics in Splunk Dashboards In this blog post, you'll learn several ways to incorporate graphics into a Splunk dashboard. We recommend you to watch the related YouTube-Video „Grafiken in Splunk Dashboards einbauen - Splunk in 5 Minuten" for visual examples and a more detailed explanation. Option 1: Simple XML dashboard with access to the
Monitor stanzas with regular expressions We recommend you watch the accompanying YouTube video "Monitor-Stanzas mit regulären Ausdrücken - Splunk in 5 Minuten" for visual examples and a more detailed explanation. Introduction to Monitor stanzas In this blog post, we will show you how to use regular expressions in Monitor stanzas to monitor files or
The central task of forwarders in a Splunk infrastructure is to read in data and forward it to indexers. In most cases, this involves multiple indexers rather than a single indexer. To distribute the read-in data among the available indexers, the forwarders use a built-in and Splunk-specific load-balancing mechanism. In this article, we will
Data protection and IT security for corona tracking apps Even if it's not directly related to Splunk, it's still related to data protection and IT security: Together with a group of various experts from the Cybersecurity focus group at digitalHUB Aachen, we have developed a concept for how the recently frequently discussed apps for collecting
Time Zones in Splunk Part 1 In a Splunk PS deployment, I come into the office on Monday mornings and see something like the following when looking at my contact's desk: Three devices, all connected to the network, display three different times The customer's organization definitely operates its IT infrastructure in only one country,
As Splunk PS Consultants, we often perform so-called health checks, in which we examine the customer's Splunk installation and document the opportunities for optimization. One of the issues that occurs in almost every health check is the sub-optimal configuration of source types. This sourcetype configuration defines very important aspects of processing incoming data in
In some cases, we don't know exactly what form of presentation in a dashboard will work best for users. Sometimes it depends on what previous knowledge the users have on the current topic, or on the time range chosen. Especially in interactive dashboards with various choices (input elements), it is often unpredictable which data
Splunk Universal Forwarders can be installed on Windows in a number of ways, including through software distribution mechanisms common in the Windows world, such as SCCM. However, in some situations, e.g. during a PoC, it is not possible or appropriate to include the installation of the UF directly in the regular software distribution. In
XDR is currently one of the "hot" topics in cyber security: Providers are presenting new solutions and offers, and as is so often the case, the new technology is presented as the ultimate solution. This is reason enough to take a look at the background and illuminate where the limits and possibilities lie with