This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Splunk Logging Using REST Post

alex_panganiban
Contributor

‎04-25-2022 09:50 PM

I am attempting to create Splunk logs using a REST Post snap. I am successful when using a curl command, however, I want to transpose this into a Snaplogic solution. When I try to use Postman, I get the same error that I get with Snaplogic. Please help.

image
image
image
image
image

Reply
2 REPLIES 2

Supratim
Contributor III

‎04-25-2022 11:24 PM

@alex.panganiban.guild Try to paste same payload which is working fine in curl. Sometimes Splunk api designed to accepts specific attributes (like event/sourectype) as payload. I have faced same kind of issue and then resolve this way. All info dumps on one attributes.

Reply

alex_panganiban
Contributor
In response to Supratim

‎04-26-2022 03:01 PM

That’s the perfect solution!! Thank you! Because this is my first time working with Splunk, I was thinking that “event” was just another arbitrary element, however, Splunk is expecting “event” as a required key element. Once I discovered that “event” was an actual key element, I coded the HTTP Entity like this, and it worked perfectly. Thanks again for the support and great assist!

image

Reply