I am new to the Splunk world, but I was trying to use Anomali ThreatStream Community App and a search but get the following errors:
(1) Error in "TsidxStats": Could not find datamodel: TS_Optic
(2) The search job has failed due to an error. You may be able view job in the "Job Inspector"
My question is: what is "datamodel : TS_Optic"? How do I create one?
↧