Getting Data In
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Can I use a REST API command to identify saved searches using a summary index?

philip_wong
Communicator
‎02-26-2015 03:52 AM

Can use a REST API command to identify saved searches using a summary index?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

MuS
SplunkTrust
SplunkTrust
‎02-26-2015 04:53 AM

Hi philip.wong,

sure, try this:

| rest /services/saved/searches | search action.summary_index="1" | table title action.summary_index action.summary_index._name

Hope this helps ...

cheers, MuS

View solution in original post

Reply
Solved! Jump to solution
Solution

MuS
SplunkTrust
SplunkTrust
‎02-26-2015 04:53 AM

Hi philip.wong,

sure, try this:

| rest /services/saved/searches | search action.summary_index="1" | table title action.summary_index action.summary_index._name

Hope this helps ...

cheers, MuS

Reply
Solved! Jump to solution

philip_wong
Communicator
‎02-26-2015 07:46 PM

Thanks!

I don't know why | rest /services/saved/searches only returns few saved searches for me.

Finally, I use this to get what I want.

| rest /servicesNS/admin/-/saved/searches
Reply
Get Updates on the Splunk Community!

Observability | How to Think About Instrumentation Overhead (White Paper)

Novice observability practitioners are often overly obsessed with performance. They might approach ...

Cloud Platform | Get Resiliency in the Cloud Event (Register Now!)

IDC Report: Enterprises Gain Higher Efficiency and Resiliency With Migration to Cloud  Today many enterprises ...

The Great Resilience Quest: 10th Leaderboard Update

The tenth leaderboard update (11.23-12.05) for The Great Resilience Quest is out >> As our brave ...