Clik here to view.
Scripting Your Way with Splunk for VMware
As you might have heard, we recently released a new product: Splunk for VMware. As you are going through the install guide, you’ll come to a step where you are required to assign a list of twelve...
View ArticleWorking with Splunk Indexes using Windows PowerShell
In my last post, I talked about a way to use PowerShell to ease the installation of our Splunk App for VMware. This time, we’ll be using PowerShell in a much different way. As you might already know,...
View ArticleSplunking Powershell and .NET Data Structures
We are currently rocking it at the Microsoft Exchange Conference (MEC) in Orlando and I’m being asked where we get our data from to handle the reporting and monitoring requirements for the Splunk App...
View ArticleSplunk with PowerShell? Yes, Please
Do you manage Windows servers? If the answer is yes, then the likelihood is that you utilize PowerShell in your daily operations. As many know, PowerShell is an extraordinarily powerful shell command...
View ArticleClik here to view.
Learn More about PowerShell and Modular Inputs
For over five years, I have been working with co-host Jonathan Walz on the PowerScripting Podcast, a weekly Internet radio show. The primary topic of the show is the Windows PowerShell scripting...
View ArticlePlaying with the Splunk C# SDK–from PowerShell
As those who know me know, I Am Not A Developer. I could convincingly play one on TV, but that’s not the point. The point is this: I don’t have a copy of Visual Studio, and I don’t want to! When in...
View ArticleMonitoring Processes on Windows
We get a lot of questions here at the Splunk Microsoft Practice – not just on our apps (which are awesome starting points for common Microsoft workloads), but also how to do specific things in Windows....
View ArticleCatching Errors in PowerShell
I’ve been recently writing a lot of PowerShell for the SA-ModularInput-PowerShell addon. It’s amazingly flexible at capturing data that is embedded in the .NET framework and many Microsoft products...
View ArticlePowerShell Profiles and Add-Path
I often blog about Splunk, but that’s not the only thing that is on my mind. One of the more common things on my mind is PowerShell and how it has affected how I do my work. It’s been hugely impactful....
View ArticleDetecting Your Hypervisor from within a Windows Guest OS
Let’s face it – most of our applications run on hypervisors – Microsoft Hyper-V, VMware or Citrix XenServer seem to be the top contenders. This makes our technology stacks that much more complex since...
View ArticleSplunk Universal Forwarders and the Domain User
One of the things that you have to decide right up front on Windows is how to run the Universal Forwarder. For most situations, running as the Local System account is adequate, providing access to all...
View ArticlePowerShell version 2
By now, you are probably aware that I love PowerShell as a method of getting things on Windows. It’s your one stop method for getting all sorts of nice things. However, our SA-ModularInput-PowerShell...
View ArticleMonitoring Scheduled Tasks with PowerShell
I did the unthinkable yesterday. I combed through my posts for non-spam comments. I apologize to everyone whom I didn’t answer – we get a lot of comment spam that I have to wade through when I do this....
View ArticleExport Search Results with PowerShell
A while back, I wrote an introduction to how you could play with our C# SDK from PowerShell. And just the other day, Adrian wrote a post talking about how you could export really large result sets to...
View ArticleMonitoring Windows Shares with Splunk and PowerShell
I sometimes get emails after blog posts. One of the (fair) criticisms is that I sometimes do something in PowerShell that can be quite legitimately done via another data input like WMI. While this is...
View ArticleMonitoring Windows File Share Permissions with Splunk and PowerShell
I stopped my last blog post on Windows File Shares noting that there was still more to do. Monitoring Windows File Shares is a three part puzzle: Accesses Share Changes Permission Changes We have...
View ArticleSplunking Windows PowerShell Commands
This years user conference was another great conference and we got a ton of questions from you during the conference. Some of them I couldn’t answer at the time – I’m making up for that in between blog...
View ArticleLogging DMVs from Microsoft SQL Server with PowerShell
Some systems are easy to monitor and diagnose – just Splunk the log file or performance counter and you are pretty much done. Others take a little more work. Take, for example, Microsoft SQL Server....
View ArticleActive Directory Replication and Windows Server 2012 R2
If you have upgraded your Active Directory domain to Windows Server 2012 R2 and use the Splunk App for Active Directory, you may have noticed that the replication statistics script doesn’t work the...
View ArticleInstall Splunk with PowerShell (2014 Edition)
One of our avid twitter followers asked how to reliably install the Splunk Universal Forwarder on a Windows host with PowerShell last week. I’ve posted about all the intricacies involved before but...
View Article