List of Indexes

This simple Splunk query will return results for indexes that the current user (typically you) have access to:

*NOTE* depending on settings this may or may not return internal indexes.

host=* | dedup index |table index

1	host=* \| dedup index \|table index

Share This:

Tagged: indexes

Comments

masdeeper March 8, 2018 at 11:53 pm

This is resource consumming. REST or tstats would be a better choice.

Reply

Leave A Comment? Click here to cancel reply.

Newest | Active

YARORA

active 17 hours, 41 minutes ago
SplunkNinja

active 20 hours, 45 minutes ago
wangrui

active 1 day ago
TonyPnode

active 1 day, 7 hours ago
dharvey32

active 1 day, 16 hours ago