↧
Answer by ae1112 for Splunk: Extract event timestamp from json log file
Fixed! I needed to move the datetime property at the top level in the json object. Kept the same configuration settings.
View ArticleSplunk: Extract event timestamp from json log file
I'm trying to extract timestamps for log events that I am forwarding to Splunk as json log files, and instead of getting the date correctly from inside the json, Splunk seems to get the timestamp from...
View Article