ParkerFromNOW
ServiceNow Employee
Options
- Post History
- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 08-31-2023 08:30 AM
Cloud Observability offers a sophisticated log search feature that provides users with comprehensive visibility into their logs.
Exploring logs
Once logs are ingested into Cloud Observability (see our log ingestion docs for more details on sending log data), users can delve deep into the logs using the Log Search functions:
- Navigating to the logs tab
- Within Cloud Observability, simply click on logs in the sidebar to begin your exploration.
- Within Cloud Observability, simply click on logs in the sidebar to begin your exploration.
- Selecting time ranges
- By default, the platform displays data from the past 60 minutes, but custom time ranges can also be input. The time picker remembers your custom time ranges for easy access in future sessions. Navigation controls also exist for backward and forward time shifts.
- By default, the platform displays data from the past 60 minutes, but custom time ranges can also be input. The time picker remembers your custom time ranges for easy access in future sessions. Navigation controls also exist for backward and forward time shifts.
- Search capabilities
- Log message body search: Use the "search logs..." box to quickly filter logs by searching for specific words or terms within the body of a log message. Remember the search is specific to entire words within the body field.
- Filtering other fields: Besides the log body, use the logs sidebar to filter by other fields. This allows for a more granular exploration, where you can search field names, values, and even sort or pin specific fields for convenience.
- Advanced features
- Live tail: Watch logs in almost real-time, as they're ingested, giving a live view of system activities.
- Log viewer: Dive deep into individual logs, exploring them in both JSON and tabular formats.
- Open linked trace: This integrates logs with traces, allowing users to see how a log correlates with trace data.
- See in context: Focus on logs around a specific timestamp, especially useful for troubleshooting.
- Integration with traces
- If you're already using Cloud Observability's tracing, you can seamlessly switch between span and log data, enhancing the overall debugging experience.
- If you're already using Cloud Observability's tracing, you can seamlessly switch between span and log data, enhancing the overall debugging experience.
- Use logs in alerts, dashboards, and notebooks
- Use Cloud Observability's Unified Query Builder (UQB) or Unified Query Language (UQL) to weave logs into alerts, dashboards, and notebooks. This provides an enhanced visualization experience and deeper analysis.
For a comprehensive understanding and detailed steps on how to make the most of the log search functions, please visit the view and query logs documentation page.
