Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Unable to search using REST API

vinitchaudhari1
New Member
‎02-17-2019 08:42 PM

Hi I have a cloud instance version 7.0.2.1 https://prd-p-df4vmzb62ds7.cloud.splunk.com. I am trying to use REST API to run search but I am always getting Page Not Found error. I gave correct username/password. I tried running simple POST call using endpoint utr https://prd-p-df4vmzb62ds7.cloud.splunk.com/services/auth/login but it is not working. If anyone has used REST API then can you please help? I also have local version 5.x but it is not enterprise. Is REST API supported only in enterprise version?

Tags (1)
0 Karma
Reply

seegeekrun
Path Finder
‎02-20-2019 07:29 AM

In Postman or Soap UI, you'll want to make sure that Authorization (Basic Auth) is set and the credentials are added.

Postman - Authorization
https://learning.getpostman.com/docs/postman/sending_api_requests/authorization/
Soap UI - How to Authenticate
https://www.soapui.org/soap-and-wsdl/authenticating-soap-requests.html

0 Karma
Reply

seegeekrun
Path Finder
‎02-19-2019 12:28 PM

Are you using port 8089?
https://your-instance.com:8089/services/admin...

The UI runs on port 8000 and is typically forwarded from 443. But the API Endpoints are over 8089, which is also the management port.

0 Karma
Reply

vinitchaudhari1
New Member
‎02-19-2019 02:37 PM

Thanks Seegeekrun for the response. I am using 8089. I just found out that it works with curl but not with Postman or SOAP UI. Is there a way to use Postman or SOAP UI for Splunk REST API?

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Observability as Code: From Zero to Dashboard

For the details on what Self-Service Observability and Observability as Code is, we have some awesome content ...

[Puzzles] Solve, Learn, Repeat: Character substitutions with Regular Expressions

This challenge was first posted on Slack #puzzles channelFor BORE at .conf23, we had a puzzle question which ...

Shape the Future of Splunk: Join the Product Research Lab!

Join the Splunk Product Research Lab and connect with us in the Slack channel #product-research-lab to get ...