The documentation for Splunk Enterprise Security versions 8.0 and higher have been rearchitected from previous versions, causing some links to have redirect errors. To resolve redirect errors, you must use the version selector on the ES documentation homepage to navigate between the versions.
This documentation does not apply to the most recent version of Splunk® Enterprise Security.
For documentation on the most recent version, go to the latest release.
Known issues for Splunk Enterprise Security
Splunk Enterprise Security 7.1.2 was released on November 8, 2023. For more information on release dates for the major versions of Splunk Enterprise Security, see Software Support Policy page.
This release includes the following known issues.
| Date filed | Issue number | Description |
|---|---|---|
| 2023-08-30 | SOLNESS-37237 | Cloned dashboards in Splunk Enterprise Security version 7.1.1 returns a 404 error. |
| 2023-06-12 | SOLNESS-36169 | The Incident Review page loads entire asset and identity tables into memory. Workaround: Disable Assets and Identities and clear out the A and I "asset_lookup_by_str" and "identity_lookup_expanded" lookups |
| 2023-04-14 | SOLNESS-35485 | Duplicate risk notables might be created for the same risk object. |
| 2023-04-03 | SOLNESS-35335 | In Content Management page selecting multiple saved searches and selecting "Enable" or "Disable" causes the entire page to freeze. |
| 2022-09-14 | SOLNESS-32647 | Saved searches created in the Content Management page with private settings are not displayed. |
Last modified on 18 March, 2024
| Fixed issues for Splunk Enterprise Security | How to find answers and get help with Splunk Enterprise Security |
This documentation applies to the following versions of Splunk® Enterprise Security: 7.1.2
Download manual
Feedback submitted, thanks!