How to migrate from CSV to KV store?

tsawant · ‎05-14-2015

I am trying to migrate from CSV to KV store following these steps:

Created collection.conf on the host in apps local directory as following:

[KV_collection]
enforceTypes = true
field.fieldname = string
field.fieldname = number
field.fieldname = number
field.fieldname = string
...

Created transform.conf on the host in apps local directory as following:

[KV_lookup]
external_type = kvstore
collection = KV_collection
fields_list = fieldname1, fieldname2...

Used following command to migrate from exciting CSV to KV store

| inputlookup lookup_tabl.csv | outputlookup KV_lookup

But getting error:
Error in 'outputlookup' command: The lookup table 'Permission denied for collection 'KV_collection'' is invalid

Can anyone help me where is the problem exactly?
Do I need any special permission to access the collection?
Also where can I find these collections that are created ?

Atchyuth_P · ‎11-22-2022

Hi @tsawant

Please try to check the lookup definition permission whether it is in private or app.

Hoping this will resolve the issue

duartet · ‎08-29-2018

The file name should be collections.conf instead of collection.conf

spyme72 · ‎05-19-2015

The KVStore could be present inside an app and you may be running the search from search app.
The search is not able to reach the kvstore. try running the search from the app where the kvstore is created.

How to migrate from CSV to KV store?

other

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms