Clik here to view.
The Curious Case of the Quoted Backslash
Recently, we released the Splunk App for Microsoft Exchange, which allows you to get all sorts of visibility from your Exchange 2007 or 2010 environment, covering Security, Operations, Help Desk,...
View ArticleWhat’s New in Splunk App for Microsoft Exchange v1.1
Following the successful release of the first Splunk App for Microsoft Exchange back in August 2011 we recently released an updated version. The Splunk App for Microsoft Exchange v1.1 contains over...
View ArticleGot Active Directory? Then you need Splunk App for Active Directory
Today at the Microsoft Teched 2012 conference we launched the Splunk App for Active Directory. This latest app helps organizations avoid service outages and provides proactive monitoring and compliance...
View ArticleWho is NOT using my Splunk server?
I was recently in Plano, just a day after releasing the Splunk App for Active Directory. Plano is one of our support centers, so it isn’t unusual to hear support calls. One of the questions was this:...
View ArticleQuick Tips from .Conf 2012 – Microsoft Solutions
I’ve just got back from .Conf 2012 in Las Vegas, and it was a great conference. I had a great time and met some great customers. We had a booth in the Splunk Labs area demonstrating both the Splunk...
View ArticleThe Splunk App for Active Directory and How I tamed the Security Log
It’s time for another question to be fully answered from .conf 2012. The question was fairly simple – “The Windows Security Log contains a lot of data. Most of it isn’t relevant to the Splunk App for...
View ArticleSplunking Powershell and .NET Data Structures
We are currently rocking it at the Microsoft Exchange Conference (MEC) in Orlando and I’m being asked where we get our data from to handle the reporting and monitoring requirements for the Splunk App...
View ArticleSplunk App for Active Directory and the Top 10 Issues
I work a lot with the various people who plan, deploy and support the Splunk App for Active Directory. Some issues come up quite frequently and I thought it would be a good idea to give you a roadmap...
View ArticleSplunking Exchange in a Simple XML World
With the release of Splunk 5.0, the Simple XML language we use to define the dashboards and forms for an app was greatly extended. So, we were given a challenge – could a reasonably complex app, such...
View ArticleDetecting iOS 6.1 with the Splunk App for Exchange
If you are an Exchange Administrator, you might have heard this one. Basically, if you upgrade your iPhone or iPad to iOS 6.1 and then accept a calendar invitation under certain (unfortunately common)...
View ArticleSplunk with PowerShell? Yes, Please
Do you manage Windows servers? If the answer is yes, then the likelihood is that you utilize PowerShell in your daily operations. As many know, PowerShell is an extraordinarily powerful shell command...
View ArticleEnabling Splunk as a Windows Domain User with Group Policy
Many times, we develop Windows-based apps (for example, the Splunk App for Exchange or the Splunk App for Active Directory) without special privileges. We recommend installing the Universal Forwarder...
View ArticleAre all my Microsoft Servers being Splunked?
I recently got asked a question – how can I tell if all my Microsoft servers are being Splunked? Interesting question and one that takes a little bit of effort. But we have all the bits, so let’s take...
View ArticleDeveloping Modular Inputs in C# – Part 1
One of the cool new features of Splunk 5.0 is modular inputs, and we’ve already seen some great examples of this, such as the built-in perfmon gathering modular input and the Splunk Addon for...
View ArticleMicrosoft Patch Tuesday! Are your servers patched?
It’s my most favorite time of the month – Patch Tuesday! Ok, I might be slightly exaggerating there. Let’s face it. It’s a pain in the neck. I have to go around to every server in my development...
View ArticleDeveloping Modular Inputs in C#: Part 2
I’m annoyed at our engineering team, but I’ll get over it. You see, just hours after I posted my first blog post on writing modular inputs in C#, the team up in Seattle released the latest edition of...
View ArticleRunning as a Windows Service
There are some things that are just plain difficult on a Windows box. Take, for example, debugging Splunk scripted inputs. It seems simple enough. But Splunk runs as a Windows Service and is usually...
View ArticleThoughts from Microsoft TechEd North America
Splunk was an exhibitor at this years TechEd North America in New Orleans, and was lucky enough to not only hand out t-shirts, but also to give numerous demos, talk to some extraordinary customers and...
View ArticleImporting SharePoint ULS Logs
We like logs – no shock there. However, system administrators also like logs. Some of the most difficult logs to work with come from the Microsoft world. I’ve seen DNS debug logs in Active Directory,...
View ArticleWindows, Perfmon and Internationalization
When we write apps within Splunk, we are generally working with a US English focus. People don’t write logs in multiple languages, after all, so we generally don’t have to worry about multiple...
View Article