Log Search
Overview
The log search feature enables you to narrow down to the exact log event that you wish to view and analyze. You can set a condition to filter out the log data to the values you desire to view. Select to set the filter condition as per your requirement view the log events you have searched for.
For example, you can set a filter condition to view all the logs from a particular source host for a specific time period by providing appropriate filter conditions. You can then view and analyze the log events you have searched.
Navigation
Go to Menu, Select Log Explorer . After that, select
.The screen to search and view the log details is now displayed.
Log Investigation using Log Search
Count of Log events
The bar graph at the top of the Log Search screen displays the count of log events received at different times during the day. To view more details about a specific time period, hover your cursor over the corresponding section of the graph.
To understand other elements of the log search, navigate to the Event Log tab present below the bar graph.
Event Log
Event Log enables you to view the details of the live log events in your infrastructure.
The timestamp of the log events and the message associated with the event are displayed on this tab by default. You can add more fields from the list of available fields to view the details of that field for each log event. Suppose you want to view the log message along with the host generating these messages, you can simply add the source.host field from the list of Available Fields to the list of Selected Fields.
Go to the list of Available Fields. Hover the mouse cursor over the field that you want to add in the Event Log. Select present beside the field. This would move the field from the list of Available Fields to the list of Selected Fields.
Select the Raw Log checkbox to show the unparsed version of logs in the Message column as received in Motadata AIOps.
Surrounding Logs
Under the Event Log tab, navigate to a specific log message and select the View Surrounding Events button to view the log messages surrounding the selected log message.
Surrounding logs provide a more comprehensive understanding of the environment and help in performing effective root cause analysis, troubleshooting, and incident response.
When an event or alert is triggered, you can view the surrounding logs that capture additional log entries from relevant systems, applications, or infrastructure components. The idea is to gather a broader set of information that might be associated with the event, allowing IT operations teams to have a more complete picture of what occurred.
Creating Reports from Log Search
The Log Search feature in Motadata AIOps also allows users to create detailed reports based on specified log filter criteria. Once you have specified the filter criteria to narrow down the log events you wish to include in the report, click on Save as Report. A dialog box will appear prompting you to enter the report Name and Description. Provide the required information and click Save. The Report will be available to view and analyse further in the All Reports category under the Log tab. For easy accessibility, you can also mark reports as favourite by clicking on the star icon preceding each of them. All marked reports will be listed under the My Favourite Reports section.