Splunk IT Service Intelligence

Finding the fields in itsi_event_management_group_index

keesling
Engager

I'm a newby to both splunk and itsi.  I think I can figure out how to find the fields in a lookup table and in an index, however, despite the name of this thing (itsi_event_management_group_index), it seems not to be an index as preceding it with "index=" yields no results, thus I can't figure out how to determine the names of the fields contained within it.  I've been provided with a query which references some of the fields via the 'stats' command, but... 1) How do I identify all such fields, and 2) what is this thing if not an index or lookup table?

Labels (2)
0 Karma
Get Updates on the Splunk Community!

Registration for Splunk University is Now Open!

Are you ready for an adventure in learning?   Brace yourselves because Splunk University is back, and it's ...

Splunkbase | Splunk Dashboard Examples App for SimpleXML End of Life

The Splunk Dashboard Examples App for SimpleXML will reach end of support on Dec 19, 2024, after which no new ...

Understanding Generative AI Techniques and Their Application in Cybersecurity

Watch On-Demand Artificial intelligence is the talk of the town nowadays, with industries of all kinds ...