All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Universal Field Extractor: Why is the app not displaying all sources?

timm747747
Path Finder
‎03-16-2017 10:41 AM

When I select the "source" dropdown in the Universal Field Extractor app, it doesn't display all of the sources associated with the index I've restricted the extraction to. I tried to look at the code, but it's Python and 1280 lines worth of code that I didn't feel comfortable messing with. I assume the search may only be going back 5 minutes or 15 minutes or something and not doing a complete search of all available results, just to finish quickly.

Any ideas?

Thanks!

0 Karma
Reply

woodcock
Esteemed Legend
‎03-16-2017 11:17 AM

Try the _bump and refresh endpoints:

http://docs.splunk.com/Documentation/Splunk/6.5.2/AdvancedDev/CustomizationOptions

0 Karma
Reply
Get Updates on the Splunk Community!

Observability Newsletter Highlights | March 2023

 March 2023 | Check out the latest and greatestSplunk APM's New Tag Filter ExperienceSplunk APM has updated ...

Security Newsletter Updates | March 2023

 March 2023 | Check out the latest and greatestUnify Your Security Operations with Splunk Mission Control The ...

Platform Newsletter Highlights | March 2023

 March 2023 | Check out the latest and greatestIntroducing Splunk Edge Processor, simplified data ...