Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Search for status of health status of splunkd

g_paternicola
Path Finder
‎10-18-2021 12:52 AM

 

Hi everyone, I'm looking for a search, that shows me when the health status of splunkd is changing from green to yellow or red...

Would that be possible?

 

g_paternicola_0-1634543353219.png

Labels (1)
Labels
Tags (2)
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

venkatasri
SplunkTrust
SplunkTrust
‎10-18-2021 04:32 AM

Try this - https://docs.splunk.com/Documentation/Splunk/8.2.2/RESTREF/RESTintrospect#server.2Fhealth.2Fsplunkd....

--

An upvote would be appreciated if this reply helps!

View solution in original post

0 Karma
Reply
Solved! Jump to solution

venkatasri
SplunkTrust
SplunkTrust
‎10-18-2021 03:30 AM

Hi @g_paternicola 

you can use this rest API  - Introspection endpoint descriptions - Splunk Documentation

--

An upvote would be appreciated if this reply helps!

0 Karma
Reply
Solved! Jump to solution

venkatasri
SplunkTrust
SplunkTrust
‎10-18-2021 03:34 AM 
| rest splunk_server=local "/services/server/health/splunkd" | table health
0 Karma
Reply
Solved! Jump to solution

g_paternicola
Path Finder
‎10-18-2021 04:28 AM

 

 

Thank you very much! That's a good one. Would also be possible to get which service has a warning or error?

Tags (2)
0 Karma
Reply
Solved! Jump to solution
Solution

venkatasri
SplunkTrust
SplunkTrust
‎10-18-2021 04:32 AM

Try this - https://docs.splunk.com/Documentation/Splunk/8.2.2/RESTREF/RESTintrospect#server.2Fhealth.2Fsplunkd....

--

An upvote would be appreciated if this reply helps!

0 Karma
Reply
Get Updates on the Splunk Community!

Last Chance to Submit Your Paper For BSides Splunk - Deadline is August 12th!

Hello everyone! Don't wait to submit - The deadline is August 12th! We have truly missed the community so ...

Ready, Set, SOAR: How Utility Apps Can Up Level Your Playbooks!

 WATCH NOW Powering your capabilities has never been so easy with ready-made Splunk® SOAR Utility Apps. Parse ...

DevSecOps: Why You Should Care and How To Get Started

 WATCH NOW In this Tech Talk we will talk about what people mean by DevSecOps and deep dive into the different ...