Cool Tools

No Content Server Explorer for Mac OS? No Problem!

Posted by N'Dèye Gnagna Marianne on Tuesday, February 27, 2018 - 09:17 Cool Tools, Development, Web Experience Management CSExplorer, WCS, Oracle WebCenter Sites, JSK, WebCenter Oracle Sites, Oracle, Eclipse, Cool Tools, WebCenter Sites Developer Tools

After years of owning a PC and taking my environment setup for granted, I landed with a Mac OS that has proven to be a bit of a challenge when it comes to spinning up the 11g JSK. Among the drawbacks is the lack of a Content Server Explorer (CS-Explorer) as the JSK stores it as an executable.

The lack of a Mac installer for the explorer within the JSK is not drastic. Technically, miracles can happen - or close enough - when you have an Intel processor and the help of a third-party tool. However, today I have decided to take a completely different route. Come to think of it, the...

Troubleshooting Tips for Splunk DB Connect 3

Posted by Somen De on Tuesday, February 13, 2018 - 12:29 Best Practices, Cool Tools, Operational Intelligence Cool Tools, db connect, dbx, Splunk, SQL, Rising column, DBX 3

Hello, fellow Splunkers! In this post, we'll take a look at a few of the pitfalls to be aware of when using the quite powerful, but sometimes hard to troubleshoot, DB Connect (DBX) 3.1.1 application from Splunkbase. So let's jump right in, shall we?

NULL values for Timestamp

If a database table that you're importing (either rising column or batch mode) contains a column representing a timestamp, most likely you'll want to utilize that column as the timestamp of the event (database record) within Splunk, instead of using the index time as the timestamp. However, be...

Tips & Tricks: Splunk's Monitoring Console

Posted by Hani Atalla on Tuesday, December 19, 2017 - 08:59 Operational Intelligence Splunk, Monitoring Console, Cool Tools, Operational Intelligence

Since Splunk enterprise released 6.5.x "The Distributed Management Console" app was renamed to "The Monitoring Console"; the app name change was not just a rename as the tool got bundled with a number of enhancements. The gist behind the monitoring console is its myriad of dashboards that provides a birds-eye-view health check of a multi-instance Splunk deployment. The dashboards behind the console rely on data collected from the different Splunk Enterprise deployments' internal logs located in both $SPLUNK_HOME/var/log/splunk/ as well as $SPLUNK_HOME/var/log/introspection/. But this blog...

Splunk 7 Event Annotations and You!

Posted by Alex Wade on Tuesday, October 24, 2017 - 10:19 Operational Intelligence Splunk 7.0, Cool Tools, Splunk, New Features, Event Annotation, Annotation

If you're anything our team at Function1, you can't wait to experiment with all of Splunk 7's dynamic new features. One of these features is “Event Annotations,” a powerful tool to highlight charts. At the moment, Event Annotations can be used in time-series charts. They are relatively simple to use; all you need is a separate search on your dashboard of type=annotation, with the annotation_label defined as the field you want to show as an annotation, and the annotation_category defined as the field to group your annotations by type. There is a simple but comprehensive example in the...

Introducing the Bloodhound App for Splunk

Posted by Rupak Pandya on Wednesday, April 19, 2017 - 09:35 Operational Intelligence Splunk 6.x, Splunk Apps, Splunk App, Cool Tools, Operational Intelligence, Bloodhound

We are excited to announce the ...

Stepping Up with Splunk!

Posted by Elizabeth Makepeace on Tuesday, October 25, 2016 - 09:08 Function1 Operational Intelligence, Splunk, Splunk 6.4, Visualizations, Wellness Program, Cool Tools

“Surround yourself with the dreamers and the doers, the believers and thinkers, but most of all, surround yourself with those who see greatness within you, even when you don’t see it in yourself.” –Edmund Lee

Splunk is an extremely versatile application, dissecting everything from a small csv file to multiple terabytes of data. I am a member of Function1’s Wellness Team as well as a part of the OI Practice. This year, the Wellness Team has decided to revamp itself and I thought Splunk would be a great tool to utilize to track our progress and feedback from...

Event Sampling - Splunk 6.4 Feature

Posted by Rupak Pandya on Tuesday, August 2, 2016 - 10:07 Operational Intelligence Big data, Splunk 6.4, Cool Tools, Dashboards, Reports, Event Sampling, Events, sample, Operational Intelligence

There have been countless instances when I was on a client site and tasked with building custom dashboards on large data sets, with a requirement to search over the past 3 months or greater. Each minor tweak or adjustment to the search would require me to run the entire search again, which on development systems would be a huge time sink. My life would have been so much easier, and I would have saved loads of time, if there was a way to run my searches against a smaller data set. Obviously, I could achieve this by, for example, running my searches against a shorter time frame but I would...

Macros and Tokens: Getting the Best Use of Them

Posted by Elizabeth Makepeace on Tuesday, January 26, 2016 - 11:04 Cool Tools, Operational Intelligence Splunk, Cool Tools, Simple XML, macros, Operational Intelligence, tokens

While at a client recently, I had the task of creating a dashboard with the ability to look at Linux and Windows data's highest points and averages. The Windows and Linux data needed to be viewed separately, but still have the ability to view the data in total. To accomplish this, I created a base search using six macros: two to encompass both operating systems with each calculation mode, and two per operating system for each calculation mode.My first step was to create the macros. This is done by Settings > Advanced Search > Search Macros. Once at this page, click “New”. You will be...

Splunk SDK for Python: Getting Data In

Posted by Ashley Mitchell on Tuesday, September 29, 2015 - 08:41 Operational Intelligence Python, Splunk, Cool Tools, Splunk SDK for Python

Splunk SDK for Python: Getting Data In

Data is a pivotal part of a Splunk Enterprise deployment. Every configuration and enhancement we make is centered on a particular dataset. As a result, Splunk provides different options for getting data into Splunk Enterprise in order to turn that data into decision-making information. The most common ways of getting data into Splunk are via UF forwarders, syslog, scripted inputs, and modular inputs. For this post, I’m going to focus on getting data from a remote interface into Splunk via HTTP utilizing Splunk SDK for Python...

Splunk Alerts in Slack!

Posted by Rupak Pandya on Tuesday, June 30, 2015 - 09:16 Cool Tools, Operational Intelligence Splunk 6.2, Cool Tools, Slack, Splunk, Alerts, Integration

Here at Function1 we use Slack in order to stay in constant contact with our co-workers. If you haven't heard of Slack before, Slack is a team chat and communication tool. We use it to talk about our projects, company announcements, sports, random water cooler talk, technical questions, etc. Slack has integration built-in with a lot of services. We rely heavily on the GitHub, Asana, and Twitter integrations, but they have many others.

Since we do a lot of Splunk development for our own projects and our clients, we thought, "...