Videos

  • Add Videos
  • View All

Latest Activity

Profile Icon
Greg Vallenari is now a member of splunkninja Sunday
Welcome Them!
Profile Icon
Mike Hartford commented on Michael Wilde's video
Got it thanks
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 8
Profile Icon
Michael Wilde commented on Michael Wilde's video
Sure...  When you do group mapping, map them to groups that don't have the domain admins in them.  I have a separate OU=Groups that has "Splunk Users, Splunk Admins, Splunk Power Users" as group names, and specific users…
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 8
Profile Icon
Mike Hartford commented on Michael Wilde's video
I want to give LDAP access to my splunk servcie but I don't want the LDAP users to have admin capabilitys in Splunk.  Can I keep the domain admins out of Splunk if I have LDAP authentication???
Thumbnail

Splunk Ninja - Basic Training: Splunk & LDAP Authentication

Feb 7
Profile Icon
Mike Hartford left a comment for Jonathan Hawes
Helow Jonathan,   Glad to have another Splunker.  I've been useing Splunk for 2 years and am hooked.  I leared how to spell splunk and | transaction too.  you'll learn that one soon.   Go over to Splunk…
Feb 7
Profile Icon
Mike Hartford commented on Mike Hartford's blog post 'tees for the holy day'
  Holy Batskins Ninja, zzzzzwap zgruppp kapow a hidden stash, how great is that!!!!   The team that found them must have special bat senses and highly tooned Splunking skills   I like to wear Extra Lovable…
Feb 7
Profile Icon
Learning, learning, learning . . . Our Splunk "expert" is gone, and the non-programmer gets to learn the task! How do you spell SPLUNK?
Status posted by Jonathan Hawes Feb 7
0 Comments
Profile Icon
Jonathan Hawes is now a member of splunkninja Feb 7
Welcome Them!
Ben Corbett
Ben Corbett
  • Male
  • London
  • United Kingdom
Share on Facebook Share on Facebook Share Twitter
 

Ben Corbett's Page

Gifts Received

Gift

Ben Corbett has not received any gifts yet

Give Ben Corbett a Gift

Latest Activity

Profile Icon
Ben Corbett commented on Ben Corbett's blog post 'Upgraded to 4.0'
After your comment on pulling out the src_ip I was ripping my hair out trying to find the field. I nthe end I did a sort of mash up with the rhost field that kind of did what I wanted but not exactly. It was confusing me becasue I wasn't…
Sep 4, 2009
Profile Icon
Michael Wilde commented on Ben Corbett's blog post 'Upgraded to 4.0'
Ben... What do you find confusing about field allocation? Is the "Other Interesting Fields" concept that shows up in the blue sidebar?
Sep 4, 2009
Profile Icon
Michael Wilde commented on Ben Corbett's blog post 'Upgraded to 4.0'
Next up.... Make your own app.... I'll do a video on it, and you'll see why :)
Sep 4, 2009
Profile Icon

Upgraded to 4.0

OK so I have finally upgraded to version 4.0 and now I am kicking myself that I didn't do it sooner! I mean I should have known that if someone known as the splunk ninja recommends you to upgrade your Splunk install then you REALLY should listen to him!It would seem that the event segmentation works much better and now it is behaving how I would expect. I must admit that I was getting a little confused with the field allocation seemingly changing all the time but 4 seems to be solid as a rock.See More
Blog post by Ben Corbett Sep 4, 2009
3 Comments
Profile Icon

Isilon Logs

Just looking at how to point our Isilon logs at Splunk. As of version 4.7.6 of OneFS, Isilon have implemented the function isi_log_server to specify a remote logging serverUsage: isi_log_server COMMAND [ARGUMENTS ...]Commands:helpPrint this help and exit.listList all configured remote servers.clearClear all configured remote servers.add HOST [FILTER]Add remote logging to hostname HOST. If logging is alreadyconfigured for HOST, the configuration will be replaced.If FILTER is not specified, the…See More
A blog post by Ben Corbett was featured Sep 4, 2009
0 Comments
Profile Icon
Blog posts by Ben Corbett Aug 28, 2009
Profile Icon
Ben Corbett commented on Ben Corbett's blog post 'Installed Splunk a week ago and it's already proving useful'
Hi Michael, I initially installed Splunk 4 but realised that it was the enterprise version with a time limit so therefore opted for the free version. I'm certainly looking forward to being able to upgrade to version 4 once the free release…
Aug 28, 2009
Profile Icon

Installed Splunk a week ago and it's already proving useful

So I initially came across Splunk when seeing a banner ad on a blog site (may have been www.techrepublic.com) and I was inquisitive as to what the hell it was. After passing it over to a colleague to check out he informed me that it looked really great and we could definitely benefit from implementing it.He set up the server but for a variety of reasons we never really embraced it. It wasn't until recently that I decided to dive in and check it out. I decided to ditch the VM that we had been…See More
A blog post by Ben Corbett was featured Aug 27, 2009
2 Comments
Profile Icon
Michael Wilde commented on Ben Corbett's blog post 'Installed Splunk a week ago and it's already proving useful'
Excellent Post. Recommendations. Upgrade to Splunk 4.x its like a monster truck rally (complete with flames) compared to the 3.x product. Field extraction (making structured sense out of those logs) is really easy to do. Next to each event (under…
Aug 27, 2009
Profile Icon
Ben Corbett updated their profile Aug 21, 2009
Profile Icon
Ben Corbett is now a member of splunkninja Aug 21, 2009
Welcome Them!

Profile Information

Are you an existing splunk user?
Free
What do you do for your day job?
Technology Manager
Web / Blog Address
http://www.bruiza.com

Ben Corbett's Blog

Ben Corbett

Upgraded to 4.0

OK so I have finally upgraded to version 4.0 and now I am kicking myself that I didn't do it sooner! I mean I should have known that if someone known as the splunk ninja recommends you to upgrade your Splunk install then you REALLY should listen to him!



It would seem that the event segmentation works much better and now it is behaving how I would expect. I must admit that I was getting a little confused with the field allocation seemingly changing all the time but 4 seems to be solid… Continue

Posted on September 4, 2009 at 1:06am — 3 Comments

Ben Corbett

Isilon Logs

Just looking at how to point our Isilon logs at Splunk. As of version 4.7.6 of OneFS, Isilon have implemented the function isi_log_server to specify a remote logging server





Usage: isi_log_server COMMAND [ARGUMENTS ...]



Commands:



help

Print this help and exit.



list

List all configured remote servers.



clear

Clear all configured remote servers.



add HOST [FILTER]

Add remote logging to hostname… Continue

Posted on August 28, 2009 at 9:00am

Ben Corbett

Installed Splunk a week ago and it's already proving useful

So I initially came across Splunk when seeing a banner ad on a blog site (may have been www.techrepublic.com) and I was inquisitive as to what the hell it was. After passing it over to a colleague to check out he informed me that it looked really great and we could definitely benefit from implementing it.



He set up the server but for a variety of reasons we never really embraced it. It wasn't until recently that I decided to dive in and check it out. I decided to ditch the VM that we… Continue

Posted on August 27, 2009 at 11:48am — 2 Comments

Comment Wall

  • No comments yet!

You need to be a member of splunkninja to add comments!

Join splunkninja

 
 
 

© 2012   Created by Michael Wilde.

Badges  |  Report an Issue  |  Terms of Service