Solved: REST API Logs

jdunlea_splunk · ‎12-14-2011

If we run queries through the REST API, does it log in Splunk if the queries are backing up or not finishing?

If so, where are these logs kept? We are running a lot of queries through the REST API and i want to make sure that we can troubleshoot the queries from somewhere.

Thanks!

Drainy · ‎12-14-2011

The queries should all be logged in the same places as if you performed them within Splunk itself.
Have you seen the Splunk SoS app? it is designed to help you look at searches and errors / problems with the system. Part of this looks at searches etc which may be of use to you.

View solution in original post

Drainy · ‎12-14-2011

The queries should all be logged in the same places as if you performed them within Splunk itself.
Have you seen the Splunk SoS app? it is designed to help you look at searches and errors / problems with the system. Part of this looks at searches etc which may be of use to you.

jdunlea_splunk · ‎12-14-2011

Excellent. Thanks for that. I forgot about SOS. I installed it now and we are able to see the logs.

Thanks!

REST API Logs

Improve Your Security Posture

Maximize the Value from Microsoft Defender with Splunk

This Week's Community Digest - Splunk Community Happenings [6.27.22]