Videos

  • Add Videos
  • View All

Latest Activity

Profile Icon
Greg Vallenari is now a member of splunkninja Sunday
Profile Icon
Profile Icon
Michael Wilde commented on Michael Wilde's video
Sure...  When you do group mapping, map them to groups that don't have the domain admins in them.  I have a separate OU=Groups that has "Splunk Users, Splunk Admins, Splunk Power Users" as group names, and specific users…
Feb 8
Profile Icon
Mike Hartford commented on Michael Wilde's video
I want to give LDAP access to my splunk servcie but I don't want the LDAP users to have admin capabilitys in Splunk.  Can I keep the domain admins out of Splunk if I have LDAP authentication???
Feb 7
Profile Icon
Mike Hartford left a comment for Jonathan Hawes
Helow Jonathan,   Glad to have another Splunker.  I've been useing Splunk for 2 years and am hooked.  I leared how to spell splunk and | transaction too.  you'll learn that one soon.   Go over to Splunk…
Feb 7
Profile Icon
Mike Hartford commented on Mike Hartford's blog post 'tees for the holy day'
  Holy Batskins Ninja, zzzzzwap zgruppp kapow a hidden stash, how great is that!!!!   The team that found them must have special bat senses and highly tooned Splunking skills   I like to wear Extra Lovable…
Feb 7
Profile Icon
Learning, learning, learning . . . Our Splunk "expert" is gone, and the non-programmer gets to learn the task! How do you spell SPLUNK?
Status posted by Jonathan Hawes Feb 7
Profile Icon
Jonathan Hawes is now a member of splunkninja Feb 7
Michael Wilde
Michael Wilde
  • Male
  • Dripping Springs, TX
  • United States
Share on Facebook Share on Facebook Share Twitter

Michael Wilde's Friends

  • David Winter
  • Mike Langhorst
  • Pedro Figueiredo
  • Kung FuSchnickens
  • Simon Says
  • Thomas Maufer
  • Will H
  • Lamar Holtzclaw
  • Lionel Hartmann
  • Maverick

Michael Wilde's Discussions

The "I suck at regex" class at Splunk User conference
3 Replies

Started this discussion. Last reply by Phillip Manning Jul 30, 2010.

Splunk 4.0 coming soon

Started Jun 22, 2009

Handling Inputs - Blacklisting
1 Reply

Started this discussion. Last reply by Rob Jahn Apr 1, 2010.

Gifts Received

Gift

Michael Wilde has not received any gifts yet

Give a Gift

 

Michael Wilde's Page

Latest Activity

Profile Icon
Profile Icon
Michael Wilde commented on Michael Wilde's video
Sure...  When you do group mapping, map them to groups that don't have the domain admins in them.  I have a separate OU=Groups that has "Splunk Users, Splunk Admins, Splunk Power Users" as group names, and specific users…
Feb 8
Profile Icon
Mike Hartford commented on Michael Wilde's video
I want to give LDAP access to my splunk servcie but I don't want the LDAP users to have admin capabilitys in Splunk.  Can I keep the domain admins out of Splunk if I have LDAP authentication???
Feb 7
Profile Icon
Michael Wilde commented on Mike Hartford's blog post 'tees for the holy day'
Update... what size were you looking for.  Rumor has it there's been a stash uncovered.
Feb 7
Profile Icon
Michael Wilde commented on Mike Hartford's blog post 'tees for the holy day'
i checked at Splunk HQ.  It looks like batbelt is out of production.  If i had one myself, i'd ship it to you... (i'll ask around and see if anyone has one stashed).
Jan 29
Profile Icon
Pero Peric replied to Michael Wilde's discussion 'New Splunk Taglines'
"Ohh Splunk! Stop staring at my l(.)(.)gs, you perv!" :D
Jan 9
Profile Icon
Emmanuel Pleshe replied to Michael Wilde's discussion 'New Splunk Taglines'
So, do you know if there is a way to get the entire list of taglines?  I've been poking around the web and can't seem to find one.
Nov 4, 2011
Profile Icon
Michael Wilde replied to Andi Susanto's discussion 'Correlation between different source that have different value key'
Andi..    How do you know user 00001 is in fact, "joe".. do you have a list somewhere.  If you do, you can use a lookup to map userid to a username.  You might create a "users.csv" file and upload it in…
Nov 3, 2011
Profile Icon

SplunkNinja - Music Broadcast

Whatever Wilde's currently playing on his iTunes.     if (WIDGETBOX) WIDGETBOX.renderWidget('2629fd74-9010-4cb0-a184-c9bcb0f89adb'); Get the MP3 Player widget and many other great free widgets at Widgetbox! Not seeing a widget? (More info)
Page posted by Michael Wilde Oct 20, 2011
Profile Icon

Music

Page posted by Michael Wilde Oct 20, 2011
Profile Icon
splunkninja now has WordPress Oct 5, 2011
Profile Icon
splunkninja now has leaderboards Oct 5, 2011
Profile Icon
Michael Wilde replied to Perry's discussion 'Regex help'
Perry... think it out... talk it out.. like this..    a backslash, ( followed by any character that is not a backslash ), followed by a backslash.   I put the parens around the phrase above, because we'll use that as a capturing…
Oct 4, 2011
Profile Icon
Michael Wilde commented on Michael Wilde's video
for the most part, you shouldn't need to do that anymore.  Splunk reloads from the config files everytime a search happens, but some times i still add it out of habit.  
Sep 27, 2011
Profile Icon
A Grant commented on Michael Wilde's video
.. | kv reload=true  ... Brilliant!
Sep 27, 2011
Profile Icon
Getting ready to rock at Splunk User Conference 2011 #splunkconf
Status posted by Michael Wilde Aug 16, 2011

Profile Information

Are you an existing splunk user?
Licensed
What do you do for your day job?
Splunk Ninja - currently I work at Splunk as an SE.
Web / Blog Address
http://splunkninja.com

Michael Wilde's Videos

  • Add Videos
  • View All

Michael Wilde's Blog

Michael Wilde

Spam problem should be nixed...

Finally Ning let me put a captcha on user signup, so that dang medical spam problem should disappear now. Hey its 2010, and finally i get to control spam... gee thanks Ning..

Posted on June 5, 2010 at 7:39pm

Michael Wilde

BLOG SPAM - APOLOGIES.. and help?!?!

Sorry about the spam on the blogs. Working with NING to solve that. I'm happy to elevate the privileges of certain users if you'd like to help police the site. Just send me a note!

Posted on April 28, 2010 at 12:26pm

Michael Wilde

Reverse DNS Lookups for Host Entries

When Splunk indexes, by default is going to take the hostname/ip that exists directly in the logfile entry...





Often, you would like to have the IP address resolved to a hostname, or vice versa. With Splunk 4.0 came a cool feature called "Lookups". Lookups allow for the enrichment of events in Splunk with data from… Continue

Posted on December 15, 2009 at 10:41am

Michael Wilde

Getting more intelligence on how much data splunk is eating.

As you know, there is a License pane in Splunk Manager (admin interface) that lets you know your "peak daily volume", and that figure is compared against your license volume. (free, or enterprise)



In the Splunk search app, (as of version 4.0.5) there is an "Index Activity" status dashboard in the search app (http://yoursplunkserver:8000/en-US/app/search/index_status). It does give you more information such as:



  • Top five sourcetypes (by total KB indexed) in the last…
Continue

Posted on November 6, 2009 at 8:24am — 4 Comments

Michael Wilde

Splunk for Blue Coat Proxy SG - Setup help!

Recently, I've seen a number of folks who have been trying to use the Splunk for Blue Coat Proxy SG app and the proxy together so the logs come in to Splunk and they are displayed properly in Splunk.





Check out this guide, I hope it helps!



Big props go out to SplunkNinja community member and Blue Coat Pre-Sales… Continue

Posted on September 25, 2009 at 2:00pm — 3 Comments

Comment Wall (9 comments)

At 11:04pm on May 28, 2009, Glenn EvansGlenn Evans said…
Glad to be here Mr Wilde.
At 11:04am on June 25, 2009, Bob FoxBob Fox said…
that's how I do.
At 11:08am on July 14, 2009, Don FaulknerDon Faulkner said…
Thanks for the greeting, Michael. Splunk's an awesome tool.
Looking forward to version 4!
At 1:33am on August 18, 2009, Colin DurrantColin Durrant said…
Thanks Michael, I'll came back to you with questions if i need to. I would like to setup email alerting mind you so a how to would be great?

Thanks

Colin.
At 11:11am on August 18, 2009, Beth MillsBeth Mills said…
Hi Michael,

Thanks! I'm working with Maverick right now. We're still in the POC stage. I've got a hard sell on my hands as there are certain paradigms I'm trying to get people to look past.

-Beth
At 9:02pm on March 5, 2010, Mike ElyMike Ely said…
Thanks for the welcome, Mike! I like what splunk can do, and only want to understand it better. Fortunately, I'm stubborn ;)
At 9:42am on March 8, 2010, Bob OsgoodBob Osgood said…
Thanks for the welcome. I am a total beginner at Splunk, but your site is really helpful. I do get the feeling it is geared more to experienced users. Do you know of any "Beginner"?

thanks
Bob
At 11:15am on April 15, 2011, Garth JordanGarth Jordan said…
Hey Mike. Watched the Splunk & LDAP Authentication video. Did not work for me. Using Windows 2008 R2. I get 'LDAP-auth': Malformed search filter: objectClass=user. If I leave it out it works fine. Reason for watching the video is that only users that can login are Domain Admin. If they are regular users they can't login. Any suggestions? Is this a Splunk or AD problem? Thanks.
At 5:01am on April 20, 2011, Garth JordanGarth Jordan said…
Yeah, that would be great if you could give me access so I can check out the settings. Thanks again.

You need to be a member of splunkninja to add comments!

Join splunkninja

 
 
 

© 2012   Created by Michael Wilde.

Badges  |  Report an Issue  |  Terms of Service