![]() See the Get Metrics page in the Splunk Enterprise manual for more information. This example demonstrates how to send JSON-formatted events with multiple metrics using HEC. The example is formatted according to the HEC event data format specification. Splunk, Splunk, Listen to Your Data, The Engine for Machine. ![]() It includes the Splunk platform instance address, port, and REST endpoint, as well as the authentication token, event data, and metadata. This example demonstrates basic HEC usage. You can use any tool or application that is compatible with the HTTP and REST specifications. There's no requirement to use the curl command to submit events to HEC. Don't use this argument in a production environment or where security is necessary. The Splunk platform is a search engine and analytic environment that uses a distributed map-reduce architecture to efficiently index, search, and process large time-varying data sets. The -k argument is insecure, so don't use it to check security certificates. The Splunk Enterprise Software Development Kit (SDK) for Python contains library code designed to enable developers to build applications using the Splunk platform. requests, you specify the query parameters in the URL. Access key-value data across your search head cluster. Apply role-based access to control which users are allowed to access and manage data. Define a set of typed fields for your data. The Search REST service supports both HTTP. Perform Create-Read-Update-Delete (CRUD) operations on individual records using the Splunk REST API and lookups using the Splunk search processing language. The header is how you include the HEC token. You can use the Search REST service to submit Keyword Query Language (KQL) or FAST Query Language (FQL) queries in your SharePoint Add-ins, remote client applications, mobile applications, and other applications. You must supply a header to submit events to HEC whether you use HTTP authentication or basic authentication. This argument is required when you use basic authentication. You can send raw text or text in JSON format to HEC. Use this argument to supply events to HEC. Typically, the example commands use the following arguments: The examples on this page use the curl command. You can use these examples to model how to send your own data to HEC in either Splunk Cloud Platform or Splunk Enterprise. They also show how you must send data to the HEC input. The following examples show how you can use HEC to index streams of data. The HTTP Event Collector (HEC) input has a myriad of use cases.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |