This documentation does not apply to the most recent version of Splunk® Enterprise Security.
For documentation on the most recent version, go to the latest release.
Fixed Issues
The following issues have been resolved for this version of Splunk Enterprise Security.
| Issue number | Description |
|---|---|
| SOLNESS-9383 | Remove the macro from eventtype=notable as an event type definition does not support the use of macros. |
| SOLNESS-9384 | A default_partitions limit causes "no results found" when performing a "stats count" search. |
| SOLNESS-9385 | Threat Intelligence: Macro failures on Splunk Enterprise 6.4. |
| SOLNESS-9386 | Threat Intelligence: Threat "Lookup Gen" searches should run after an upgrade. |
| SOLNESS-9387 | Threat Gen - zipexpand threat matches does not properly layer on weight. |
| SOLNESS-9388 | Threat - Watchlisted Events - Rule: uses the non-streaming command "table" early in the pipeline. |
| SOLNESS-9390 | Timeline: After adding notable event from checkbox on Incident review errors in console. |
| SOLNESS-9394 | Incident Review: events not showing when malformed event exists. |
| SOLNESS-9397 | Typo on the Configuration page. |
| SOLNESS-9398 | Suppress warnings about insufficient system specs on cloud. |
| SOLNESS-9488 | Content Management: use the correct email subject settings |
Last modified on 03 June, 2016
| Release Notes for Splunk Enterprise Security | Known Issues |
This documentation applies to the following versions of Splunk® Enterprise Security: 4.1.1
Download manual
Feedback submitted, thanks!