About aditi25

aditi25 · ‎09-05-2020

hello! We did it with the credentials, but couldn't find a proper stanza for inputs. If you could help us with that?

aditi25 · ‎09-05-2020

hello! We did it with the credentials, but couldn't find a proper stanza for inputs. If you could help us with that?

aditi25 · ‎09-05-2020

We downloaded and installed the tenable add-on for Splunk. When we tried to add an account we got an error stating "Add a valid address or hostname or either enable ssl or enable proxy". Then we followed the following link --> (https://community.splunk.com/t5/All-Apps-and-Add-ons/Unable-to-Add-Tenable-io-Account-in-Tenable-Add-on-for-Splunk/td-p/459473) by which we were able to add an account. After adding the account now when we are trying to add an input we are facing the error of "credentials are not valid".

aditi25 · ‎01-31-2020

Hi, I believe you want to extract the value of the status field (i.e status = 2 then you want to extract 2 as the value of the status field) If you want to go for regex expression. your expression would look like ''Status'\W+(?\d+)'. Now that you have the regex expression. you can go to your splunk UI and there in the fields sidebar, scroll down you will see a '+' sign with "extract new fields">> click on it. You will see the option as "I prefer writing my own regular expression" click on that. And put the above specified regex expression there. preview your extracted field click save And then you would get an extracted field as "status" in the fields side bar. To know more about the regex expressions you can practice it here ----> "https://regex101.com/"

Posts	4
Solutions	0
Karma Given	0
Karma Received	0
Member Since	‎12-06-2019

Online Status	Offline
Date Last Visited	‎09-06-2020 07:00 AM

Tenable add-on for splunk

Re: Tenable add-on for splunk

Re: Tenable add-on for splunk

Tenable add-on for splunk

Re: Extract a Value from a Field