Shobhit Garg
- Total activity 64
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 38
Activity overview
Latest activity by Shobhit Garg-
Shobhit Garg created an article,
How can I ingest Microsoft Teams logs in to Sumologic?
Problem: I want to ingest the Microsoft Teams logs using Microsoft Office 365 Audit Source I have configured the Microsoft Office 365 Audit source as per this doc. Currently under Microsoft Offic...
-
Shobhit Garg created an article,
Cloud Syslog in PEM format
Problem: I'm trying to setup syslog forwarding from PhishER (from KnowBe4) to SumoLogic. SumoLogic cloud syslog provides a token. In PhishER it asks me to provide them below Client authenticatio...
-
Shobhit Garg created an article,
Include all the results in a scheduled search email alert.
Problem: I have setup a scheduled search, which sends the alert to an email id, who does not have access to Sumo Logic. Right now in the email alert it says: Result Set Displaying 25 out of 60 or m...
-
Shobhit Garg created an article,
Discrepancy between Account Usage Details and Log Data Volume Index data
Problem: When I calculate the total data ingested day-wise using Log data Volume index via below query, the result does not match with the information I see in the account page. _index=sumologic_...
-
Shobhit Garg created an article,
How can I search the Default Index explicitly?
To search the Default (General) index only, start your query like this: * | where isEmpty(_view)
-
Shobhit Garg created an article,
SLF4J errors ingested into Sumo Logic while collecting OKTA logs via SumoJanus package.
Problem: I have installed Sumojanus package for collecting OKTA logs. I do see below error messages ingested into Sumo Logic along with OKTA logs SLF4J: See http://www.slf4j.org/codes.html#Static...
-
Shobhit Garg created an article,
Search query does not produce results for frequent tier partition.
Problem: I have created a frequent tier partition. However, my search query is not producing any data. What could be the issue? Resolution: When you search for data in Frequent Analytics partitions...
-
Shobhit Garg created an article,
When forwarding data to S3, are the logs sent before or after processing rules have been applied?
Logs are forwarded after processing rules have been applied because they are forwarded from the SumoLogic index/partition to S3 bucket
-
Shobhit Garg created an article,
Does SumoLogic use receipt time or message time for calculating data retention?
Retention is always based/calculated on receipt time regardless of what is parsed out for message time.
-
Shobhit Garg created an article,
Will Sumo Logic collect a file that was deleted then recreated with the same name?
If a log file gets deleted then recreated with the same name, Sumologic performs below checks: 1.) The collector scans the given path expression and looks for any file names that match the path. 2....