Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How to configure Chrome as a search engine for Splunk queries?

oxnard
Engager
‎01-19-2015 03:06 PM

Hi there,

I couldn't find this question already on here. Hopefully it's a simple one.

I use Splunk regularly in my work and often have to run a quick query.
I've configured Chrome so that I can quickly search from the omnibox/address bar by typing a shortcut, so that I can search other regularly used systems (like Jira).

Can Splunk do the same?
This is what I've tried:

Chrome > Settings > Manage Search Engins (alternatively, chrome://settings/searchEngines)

I then add a new Search engine with the following details:

Name "Splunk"
Keyword "s"
URL "http://splunk_vm_box:8000/en-US/app/search/search?q=search%20"

So, when I'm in the address bar/omnibox in Chrome I should be able to type "s" then press the space bar to initiate a Splunk query.
It doesn't seem to like this though.

I don't believe the issue is caused by user authentication - other systems I've configured in a similar way also require logging in.
Is my search URL incorrect?
I know splunk assigns an individual search ID to each query, but I figure this would happen AFTER I submit the query, not prior.

Reply
1 Solution
Solved! Jump to solution
Solution

MuS
Legend
‎01-19-2015 11:16 PM

Hi oxnard,

Thanks for this question and nice hint using chrome like this!
I tried it myself and got it working, you missed one little thing 😉
You have to provide a %s somewhere in the URL so chrome will know where to place the search string.
Change your config to something like this:

Name "Splunk"
Keyword "s"
URL "http://splunk_vm_box:8000/en-US/app/search/search?q=search%20%s"

and it will work like a charm 🙂

hope this helps ...

cheers, MuS

View solution in original post

Reply
Solved! Jump to solution
Solution

MuS
Legend
‎01-19-2015 11:16 PM

Hi oxnard,

Thanks for this question and nice hint using chrome like this!
I tried it myself and got it working, you missed one little thing 😉
You have to provide a %s somewhere in the URL so chrome will know where to place the search string.
Change your config to something like this:

Name "Splunk"
Keyword "s"
URL "http://splunk_vm_box:8000/en-US/app/search/search?q=search%20%s"

and it will work like a charm 🙂

hope this helps ...

cheers, MuS

Reply
Solved! Jump to solution

BasiliusCarver
Explorer
‎05-25-2020 07:25 PM

Firefox can use keyword searches for this without the need for an extension.
FirefoxBookmarkConfig

Then you search by typing the keyword followed by the splunk search string:
FirefoxSearchSyntax

Reply
Solved! Jump to solution

oxnard
Engager
‎01-20-2015 12:35 PM

Thanks MuS.
That works a treat!

0 Karma
Reply
Solved! Jump to solution

pradeepkumarg
Influencer
‎04-27-2015 07:37 AM

Do we have a similar solution for firefox?

0 Karma
Reply
Solved! Jump to solution

MuS
Legend
‎04-27-2015 08:07 AM

No, but may be this add-on for Firefox can help you https://addons.mozilla.org/en-US/firefox/addon/add-to-search-bar/
I did not test it, because I don't use Firefox 😉

Reply
Solved! Jump to solution

pradeepkumarg
Influencer
‎04-27-2015 10:17 AM

Thanks so much.. That worked..

0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

REGISTER NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If ...

Observability | Use Synthetic Monitoring for Website Metadata Verification

If you are on Splunk Observability Cloud, you may already have Synthetic Monitoringin your observability ...

More Ways To Control Your Costs With Archived Metrics | Register for Tech Talk

Tuesday, May 14, 2024  |  11AM PT / 2PM ET Register to Attend Join us for this Tech Talk and learn how to ...