×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
drapkin11
Explorer
Member since: ‎08-06-2013
‎06-05-2020
Community Statistics
Posts 6
Solutions 0
Karma Given 47
Karma Received 0
Member Since ‎08-06-2013
Activity Feed
Topics I've Started
View All

Re: Users who are logged in right now

by in Splunk Search
‎08-04-2024 09:55 PM
‎08-04-2024 09:55 PM
This one seems better as it exclude scheduled searches. index="_audit" [search index=_internal source="*web_access.log" user!="-" | stats by user | fields user] | search action="search" OR action="rtsearch" | stats values(action) as Action, values(info) as Info, max(timestamp) as lastTime, min(timestamp) as firstTime by user ... View more

Re: regex syntax clarification

by in Splunk Search
‎08-21-2013 07:54 PM
‎08-21-2013 07:54 PM
Interesting! I didn't get that error but I tested on 5.0.2. Thanks for posting what worked for you! ... View more

Re: Splunk 4.3 -> Bug -> Actions: Export Results

by in Splunk Search
‎08-09-2013 03:25 PM
‎08-09-2013 03:25 PM
sendemail did not work for me for some reason and I'm using Splunk v4.3.3 What did work was adding the following to the end of the search string: | outputcsv myfile.csv The output file was routed by default to the $SPLUNK_HOME/var/run/splunk folder. Thanks to @yannK for this answer to a different question: http://splunk-base.splunk.com/answers/42067/can-search-results-be-exported-using-a-command-in-the-search-scriptbar/42072 ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma given to