cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
katmbro
Engager
Member since: ‎12-12-2023
‎12-13-2023
Community Statistics
Posts 2
Solutions 0
Karma Given 1
Karma Received 1
Member Since ‎12-12-2023
View All

Re: Indexing and reading .tsidx files/directory-st...

by in Monitoring Splunk
‎12-13-2023 09:33 AM
1 Karma
‎12-13-2023 09:33 AM
1 Karma
Thank you for clarifying! I'm new to tsidx files so I didn't know if they were meant to be read. I guess we haven't been collecting the logs from active directory specifically so we're working on that. 🙂 ... View more

Indexing and reading .tsidx files/directory-stored...

by in Monitoring Splunk
‎12-12-2023 09:05 AM
‎12-12-2023 09:05 AM
Hello! Our Splunk server receives dc logs on a daily basis from another network team. Under Files & Directories in Data Inputs, I have the file path for those logs configured to be continuously monitored since we receive those logs from another organization. I set a custom index for those logs and it's not showing any data in that index. I've verified that it's not a permissions issue. I decided to manually upload one of those files into Splunk and noticed that they are .tsidx files. After uploading, I wasn't able to read any of the data on the .tsidx file. Is that normal? Am I doing anything incorrect? We need to be able to audit those dc logs. Thanks in advance! ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎12-13-2023 12:54 PM
Karma from
View All
Karma given to
View All