More details, please. What problem are you trying to solve? What queries have you tried so far? Are you looking for the user-agent string from one of your Splunk indexes or from a Splunk user. If the latter, then there is no query for it. Is your web server sending user-agent strings to Splunk for indexing? If not then no query will find them and you should work on getting that data indexed. If it is indexed then you should be able to search for it, assuming your role has access to the proper index. Again, we'll need more information to be more helpful.
... View more