Alerting
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to see Alert search results in RSS feed

coresystems_scp
Engager
‎08-17-2011 05:15 AM

Hi,

I have created a Search that will display be some data, like number of sold license in the last 24 hours.
When running the search I can see the results in Splunk like this
ProductA 24
ProductB 10

But with RSS I don't see any search results, I just see that the query was running.

How can I see the search results in the RSS feed?

Thanks

Tags (2)
Reply

amit_saxena
Communicator
‎09-12-2013 10:38 AM

Hi,

I have successfully retrieved search results via RSS though indirectly. The steps for the same are as follows.

1) Extract RSS entry from RSS feed.
2) Extract the alert details and hence job name from RSS entry
3) Use REST API with this job name as input to get job results export in any format like rss, xml, json etc

Let me know if there are any queries.

Regards,
Amit Saxena

0 Karma
Reply

Ayn
Legend
‎08-17-2011 05:32 AM

Unfortunately there is currently no functionality for including search results in the RSS feed. This would be a great feature, so you should consider filing an ER for it.

Reply
Get Updates on the Splunk Community!

Splunk MCP & Agentic AI: Machine Data Without Limits

  Discover how the Splunk Model Context Protocol (MCP) Server can revolutionize the way your organization ...

Finding Based Detections General Availability

Overview  We’ve come a long way, folks, but here in Enterprise Security 8.4 I’m happy to announce Finding ...

Get Your Hands Dirty (and Your Shoes Comfy): The Splunk Experience

Hands-On Learning and Technical Seminars  Sometimes, you just need to see the code. For those looking for a ...