All Apps and Add-ons
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to make search indexes configurable in Add-on panel searches?

joshuapetitt
Path Finder
‎01-02-2018 09:04 AM

I am making an add-on that will be installed in a couple of different splunk environments.

The different splunk environments use different index names for the "same" data.

I would like to make my search string somehow configurable, so the index that it searches can be configurable by the end user.

I know there are the $token$ values that can be used in panel search queries. Is it possible to populate the $token$ value from a local .conf file perhaps?

I found a related questions here:

https://answers.splunk.com/answers/221617/retrieving-values-from-config-file.html

UPDATES:

It looks like the setup.xml is what I need to include in my app:

https://docs.splunk.com/Documentation/Splunk/7.0.1/Admin/Setup.xmlconf

0 Karma
Reply

lfedak_splunk
Splunk Employee
Splunk Employee
‎01-02-2018 10:04 AM

Hey @joshuapetitt, Did the setup.xml resolve your problem?

0 Karma
Reply

joshuapetitt
Path Finder
‎01-02-2018 10:07 AM

maybe? I am still researching how to properly setup setup.xml 😉 The one portion I'm still not 100% sure on is after I do have a working setup.xml, how I would reference the .conf value in the dashboard panel as a token?

0 Karma
Reply
Get Updates on the Splunk Community!

Demo Day: Strengthen Your SOC with Splunk Enterprise Security 8.1

Today’s threat landscape is more complex than ever. Security operation centers (SOCs) are overwhelmed with ...

Dashboards: Hiding charts while search is being executed and other uses for tokens

There are a couple of features of SimpleXML / Classic dashboards that can be used to enhance the user ...

Splunk Observability Cloud's AI Assistant in Action Series: Explaining Metrics and ...

This is the fourth post in the Splunk Observability Cloud’s AI Assistant in Action series that digs into how ...