Getting Data In
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Splunk Administration
- :
- Getting Data In
- :
- Re: Can REST API be used to execute a python scrip...
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Can REST API be used to execute a python script on Splunk server?
simpkins1958
Contributor
04-13-2017
02:34 PM
Could we add a custom python script on our Splunk server and have it executed from a client using the Splunk REST API?
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
paramagurukarth
Builder
05-28-2019
04:13 AM
Are you looking for something like this
https://wiki.splunk.com/Community:40GUIDevelopment
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
highsplunker
Contributor
05-28-2019
02:08 AM
SOLVED for similar case
"Error when I run custom Python script from one server to another sever using cURL (Search Factory: Unknown search command)"
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
hardikJsheth
Motivator
04-13-2017
09:59 PM
Yes you can do that. One of the way is Modular Inputs.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
jonmargulies
Path Finder
04-13-2017
05:00 PM
Yes! One way to do this is with a custom search command. Let's say your python script is called "testscript". You could rewrite as (or call it from) a Python script that Splunk recognizes as a custom search command, and then you could execute it as a Splunk search like this: "| testscript". Then you could call that search (adding arguments as needed) using the Splunk REST API.
Here's a link that explains how to create custom search commands: http://dev.splunk.com/view/python-sdk/SP-CAAAEU2
Here's the basic documentation on running a search from Python using Splunk's REST API: http://dev.splunk.com/view/python-sdk/SP-CAAAEE5
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
highsplunker
Contributor
05-23-2019
06:49 AM
Guys,
why this does not work from a Linux myServer2?
curl -k -u 'myUser:myPwd' https://myServer1:8089/services/search/jobs/export -d search=" | makeresults | myScript " -d output_mode=csv
But OK for search = " | makeresults | eval myVal=777 "
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
highsplunker
Contributor
05-28-2019
01:26 AM
Again. So poor support here...
Get Updates on the Splunk Community!
Security Professional: Sharpen Your Defenses with These .conf25 Sessions
Sooooooooooo, guess what.
.conf25 is almost here, and if you're on the Security Learning Path, this is your ...
First Steps with Splunk SOAR
Our first step was to gather a list of the playbooks we wanted and to sort them by priority. Once this list ...
How To Build a Self-Service Observability Practice with Splunk Observability Cloud
If you’ve read our previous post on self-service observability, you already know what it is and why it ...
