Solved: How to use 24-hour clock in the US Local?

lyndac · ‎08-17-2015

Using SPLUNK 6.2.1 - How do I display all my date/times using the 24-hour clock? I want to keep the US Local for the date, but have the time show as 17:33;33 instead of 5:33:33.

I have seen some posts for version 4.1.1, but have not seen answers for the more recent versions.

Thanks

lguinn2 · ‎08-17-2015

You can still use a different locale in your browser; that will work. Use en-GB instead of en-US

View solution in original post

lguinn2 · ‎08-17-2015

You can still use a different locale in your browser; that will work. Use en-GB instead of en-US

lyndac · ‎08-18-2015

Yes, I did do that and it works. Wasn't sure what side-effects that might have (if any)

lguinn2 · ‎08-18-2015

No side-effects! In the actual indexes, Splunk stores all timestamps in Linux epoch time, with a timezone of UTC.

When Splunk displays times, it takes into account the user's timezone setting and the browser setting.

How to use 24-hour clock in the US Local?

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Deep Dive: Accelerate threat investigation with Splunk’s AI Assistant in Security

Announcing Modern Navigation: A New Era of Splunk User Experience

Detection Engineering Office Hours: Real-World Troubleshooting & Q&A

Join the Conversation