Advertisements
Skip to content

December 6, 2017

Download Splunk _raw data from Index using the Web Interface

by Criss Davis

Select the appropriate time range.

In the Splunk search window, search for the index and table the _raw data.

Capture1.PNG

Download the search results. Click on the Export button.

Capture2.PNG

Save the file as a csv.

Capture1.PNG

Advertisements

Leave a Reply

%d bloggers like this: