Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to search with the metadata command using the Python API?

lohitkidu
Path Finder
‎05-11-2016 10:27 PM

Hi ,

I am not sure how to use the metadata command using the Python API as it is required to be the first command like | metadata type=hosts, but when we use the Python API every search has to be appended by search like search index=abc.

In case of metadata, if I use search metadata type=hosts or search | metadata type=hosts, none of them are working.

Any ideas how to use it?

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

lohitkidu
Path Finder
‎05-25-2016 02:00 AM

It turns out that while using metadata command over API, we do not require search command as a prefix.

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

lohitkidu
Path Finder
‎05-25-2016 02:00 AM

It turns out that while using metadata command over API, we do not require search command as a prefix.

0 Karma
Reply
Solved! Jump to solution

somesoni2
Revered Legend
‎05-11-2016 11:48 PM

Try this as the search query

search index=_internal | head 1 | map maxsearches=1 "| metadata type=hosts"
0 Karma
Reply
Solved! Jump to solution

lohitkidu
Path Finder
‎05-25-2016 01:41 AM

Never worked for me.

0 Karma
Reply
Get Updates on the Splunk Community!

Routing logs with Splunk OTel Collector for Kubernetes

The Splunk Distribution of the OpenTelemetry (OTel) Collector is a product that provides a way to ingest ...

New This Month - Observability Updates Give Extended Visibility and Improve User ...

This month is a collection of special news! From Magic Quadrant updates to AppDynamics integrations to ...

Intro to Splunk Synthetic Monitoring

In our last post, we mentioned that the 3 key pieces of observability – metrics, logs, and traces – provide ...