Customize notable event settings in Splunk Enterprise Security Expand tokens in notable events using the expandtoken command Manage investigations in Splunk Enterprise Security Administer and customize the investigation workbench Manage and customize investigation statuses in Splunk Enterprise Security ...
| makeresults | eval message= "Happy Splunking!!!" chart-with-dashed-line.png 27 KB 2 Karma Reply kmaron Motivator 11-12-2018 05:31 AM You can add your static values just by adding an eval to the end of your search search fruit=pear | rename growTime as Durati...