How can I use REST api to get scheduled searches?

Reporting

I am able to get results with this:

curl -k -u ${SPLUNK_USER}:${SPLUNK_PASSWORD} -X GET https://{$SPLUNK_URL}/servicesNS/-/-/saved/searches?search="\(eai:acl.owner='username'\)"\&count=0

but I would also like to return only those that are scheduled. I tried to add:

?search="\(eai:acl.owner='username'\) AND \(is_scheduled=1\)"\&count=0

but it returns 0. I also tried with only this:

?search="\(is_scheduled=1\)"\&count=0

and it returns 0. I am not sure how to make the is_scheduled work.

Thanks!

How can I use REST api to get scheduled searches?

saved search

We've made .conf21 totally virtual and totally FREE! Our completely online experience will run from 10/19 through 10/20 with some additional events, too!

Learn More or Register Now >

How can I use REST api to get scheduled searches?

saved search

We've made .conf21 totally virtual and totally FREE! Our completely online experience will run from 10/19 through 10/20 with some additional events, too! Learn More or Register Now >

We've made .conf21 totally virtual and totally FREE! Our completely online experience will run from 10/19 through 10/20 with some additional events, too!

Learn More or Register Now >