I worked on this app quite a bit after my posts above and found that the correct index is now wineventlog, which changed from the previous version. When digging through the saved searches that the app uses, it references the index and sourcetypes correctly. There seems to be a bug with a few of the drop downs which I have seen in multiple environments across multiple companies and even after clean installs. I have worked with splunk on these dropdowns but they don't seem to have an answer at this point and I get the feeling that that original devs are no longer working on it.
... View more
i've renammed the sourcetype for our juniper SA log, we had it be "vpnssl", so i renammed it for "juniper_sa_log", but the data is still not showing as expected in juniper-SA app's dashboard and searches, is there a kind of manual that i could get my hands on?
... View more