Reporting
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Adding saved search using splunk CLI with enableSched does not work

hkaiser
Path Finder
‎05-15-2014 02:09 PM

Hello all,

I'm trying to define splunk saved-search using the splunk CLI.
In order to enable scheduling of a saved search, I identified the option "enableSched" in the savedsearch.conf. I would like to enable this option. However it looks like enableSched is not supported on the CLI.

However it looks like the parameter is not supported:

/opt/splunk/bin/splunk edit saved-search -name 'Test123' -enableSched '1'

An error occurred:

In handler 'savedsearch': Argument "enableSched" is not supported by this handler.

Is there another possiblity to enable scheduling of a report from the command line?

Also is there any possiblity to get a list of all possible parameters of splunk? Looks like /bin/splunk help does not provide much detail in this case and the splunk online documentation about the CLI does not provide such detail.

Thank you.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

LukeMurphey
Champion
‎08-11-2014 04:25 PM

Instead of setting "enableSched", try "is_scheduled" instead. This should work:

/opt/splunk/bin/splunk edit saved-search -name 'Test123'  -is_scheduled '1'

I'm making a bug report to get them to make this more intuitive.

View solution in original post

Reply
Solved! Jump to solution
Solution

LukeMurphey
Champion
‎08-11-2014 04:25 PM

Instead of setting "enableSched", try "is_scheduled" instead. This should work:

/opt/splunk/bin/splunk edit saved-search -name 'Test123'  -is_scheduled '1'

I'm making a bug report to get them to make this more intuitive.

Reply
Solved! Jump to solution

arichman
Explorer
‎05-22-2015 04:58 PM

glad I found this!

0 Karma
Reply
Get Updates on the Splunk Community!

OpenTelemetry for Legacy Apps? Yes, You Can!

This article is a follow-up to my previous article posted on the OpenTelemetry Blog, "Your Critical Legacy App ...

UCC Framework: Discover Developer Toolkit for Building Technology Add-ons

The Next-Gen Toolkit for Splunk Technology Add-on Development The Universal Configuration Console (UCC) ...

.conf25 Community Recap

Hello Splunkers, And just like that, .conf25 is in the books! What an incredible few days — full of learning, ...