Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Time Format Help

AzmathShaik
Path Finder
‎08-13-2020 09:12 AM

Hello 

i have log events with time format "2020-08-13 15:50:20 UTC+0000" and i have defined 
TIME_FORMAT as %Y-%m-%d %H:%M:%S %Z

but still seeing Failed to parse timestamp warnings. can someone correct where am doing mistake? 

Labels (1)
Labels
Tags (1)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

gcusello
Esteemed Legend
‎08-13-2020 10:31 AM

Hi @AzmathShaik,

try this please:

%Y-%m-%d %H:%M:%S %Z%z

Ciao.

Giuseppe

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

gcusello
Esteemed Legend
‎08-13-2020 10:31 AM

Hi @AzmathShaik,

try this please:

%Y-%m-%d %H:%M:%S %Z%z

Ciao.

Giuseppe

0 Karma
Reply
Solved! Jump to solution

gcusello
Esteemed Legend
‎12-22-2020 08:59 AM

Hi @AzmathShaik,

good for you,

Ciao and happy splunking.

Giuseppe

P.S. Karma Points are appreciated 😉

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Join Principal Threat Researcher, Michael Haag, as he walks through:An introduction to the Splunk Threat ...

Splunk Life | Happy Pride Month!

Happy Pride Month, Splunk Community! 🌈 In the United States, as well as many countries around the ...

SplunkTrust | Where Are They Now - Michael Uschmann

The Background Five years ago, Splunk published several videos showcasing members of the SplunkTrust to share ...