Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Search
Splunk Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
- Search
Search the Community
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
204 results
Sorted by:
08-16-2022
08:50 PM
...sing CLI about enabling/disabling correlation search. I mean, I just want to change many rules and many apps to "disabled = 0" or "disabled =1" in savedsearch.conf using CLI(like shell). I a...
- Tags:
- es savedsearch
03-04-2013
09:34 AM
...t;module name="SavedSearch" layoutPanel="panel_row4_col1" group="stagedb.wavemark.net">
<param name="savedSearch">Long Running Reports Trend (2+ Seconds) - Daily Count</param&g...
08-16-2018
11:43 AM
1 Karma
Given a specified n number of csvs, I want to input and append them:
| makeresults | eval count=mvrange(0,n,1) | mvexpand count | eval filename=strftime(relative_time(now(),"-"+tostring(count)+"m...
08-25-2014
08:17 AM
1 Karma
...es.conf file I have disabled = 1, I want to retrieve that value)
2) How is the search scheduled? - (in the savedsearches.conf file I have cron_schedule = 0 */12 * * *, I want to r...
05-15-2014
02:09 PM
Hello all,
I'm trying to define splunk saved-search using the splunk CLI.
In order to enable scheduling of a saved search, I identified the option "enableSched" in the savedsearch.conf. I w...
07-07-2014
09:40 AM
1 Karma
...pp to use
{% savedsearchmanager %}
id="name_of_this_manager"
searchname="Name of Saved Search"
app="search" %}
My saved search is supposed to run every 6 hours, however when I t...
04-25-2014
03:34 AM
...rocess]
for this I am unable to get Email alert, following I have added in savedsearch.conf file
action.email = 1
action.email.inline = 1
action.email.sendresults = 1
action.email.to = m...
11-24-2014
12:03 AM
I use Splunk 6.2. I have few scheduled searches that creates summary index. I need them to run on time (Not continued), So i changed the realtime_schedule value to "1" in savedsearches.conf. E...
05-30-2014
03:08 PM
1 Karma
I created a simple dashboard as PDF delivery schedule and it wrote it to the savedsearches.conf in my user folder.
But I need it to part of the app so I can deploy it to another search head.
W...
