I'm trying to use the Python SDK to search in Splunk.
However, I can only search on some indices, for others I just get an empty response.
For example, when I use the command
I get a response, but when I use
I don't get any response. But if I use the web interface this query works, i.e. my user has rights to search on that index and I am authenticating myself when using the Python-SDK.
Do you have any idea what could explain this? The silent returning of nothing is not helping me.
I have confirmed with an administrator that it is not a problem with access rights as the script shows the same behavior when he authenticates with his user.