Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to make Splunk query case sensitive

Tags:

splunk

splunk-query

How do I make my query case sensitive.

Say I want my search results for "Case Sensitive" and not "CASE sensitive" or "CASE SENSITIVE"

This is what I'm using which isn't helping.

index=foo_foo sourcetype=foo "Is my query CASE(Case Sensitive)"

I've tried using CASE(Case Sensitive) but that didn't help me get the results.

like image 640
RIP SunMicrosystem Avatar asked Oct 24 '25 04:10

RIP SunMicrosystem

1 Answers

I suspect Splunk is interpreting your search string literally so is not seeing CASE as a function.

Try this:

index=foo_foo sourcetype=foo "Is my query "CASE(Case Sensitive)
like image 153
Tim Avatar answered Oct 27 '25 16:10

Tim
Sign in to Comment

Related questions

Splunk Java integration with JUnit
splunk admin password [closed]

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!