November 14, 2020

Searching for multiple field values in Splunk

Searching for multiple field values in Splunk
IN operator can be used to search for multiple field values in Splunk

Syntax:
field IN (value1, value2, value3)

Sample:
userId IN (123, 456, 789, 587)
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)