Splunk Dev
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Creating new columns with external data from an API

meital
Loves-to-Learn
‎11-27-2021 11:39 PM

Hey guys!

This is my first question here, so I'm sorry if I'm not being clear.

I want to enrich the data we have and add a few fields with data that I receive from an external API.

For this, I want to create a custom command to receive a field name and add run a python code to send requests to the API with the field values and create new fields with the additional data for each row.

I have no experience with creating new commands with python, so I'd much appreciate an explanation how to do it (or if you have a better idea how to implement this) and some examples to rely on.

Thanks! 🙂

Labels (1)
Labels
0 Karma
Reply

PickleRick
SplunkTrust
SplunkTrust
‎11-28-2021 02:47 AM

There's quite a lot of docs about this.

https://dev.splunk.com/enterprise/docs/devtools/customsearchcommands/

0 Karma
Reply
Register for .conf25!
Get Updates on the Splunk Community!

Why You Can't Miss .conf25: Unleashing the Power of Agentic AI with Splunk & Cisco

The Defining Technology Movement of Our Lifetime The advent of agentic AI is arguably the defining technology ...

Deep Dive into Federated Analytics: Unlocking the Full Power of Your Security Data

In today’s complex digital landscape, security teams face increasing pressure to protect sprawling data across ...

Your summer travels continue with new course releases

Summer in the Northern hemisphere is in full swing, and is often a time to travel and explore. If your summer ...
Top