All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk DB Connect: How to convert my database input's date and time format?

jonathan_yan5
Explorer
‎11-25-2016 03:47 AM

Hi,

im having a problem with database inputs conversion of date and time.

my database table date and time format is YYYY-MM-DD/HH:mm:ss but Splunk was able to read this differently.

sample:

"DB table date and time": 2016-11-25/17:56:00

"Splunk converted date and time":
(Record 1) 2016-11-25 7:59:59:000 AM
(Record 2) 2016-11-25 7:59:59:000 AM
(Record 3) 2016-11-25 7:59:59:000 AM

Can this be solved by revising the SQL? or by regex?

0 Karma
Reply

Azeemering
Builder
‎11-28-2016 03:16 AM

Hello,

You should be able to define the timestamp for the specific connection in $SPLUNK_HOME/etc/apps/splunk_app_db_connect/local/inputs.conf

Here you can enter output_timestamp_format = yyyy-MM-dd HH:mm:ss
Did you set this?

0 Karma
Reply
Get Updates on the Splunk Community!

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

The Transformative Power of AI and ML in Enhancing Observability   In the realm of IT operations, the ...

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...