...
Then entered the desired user selection parameters, followed by the Execute button, The information displayed will match the data that is extracted and sent to Splunk.
...
Field Mapping
...
Field
...
Description
...
Unit of Measure
...
CLASS
...
Oracle alert log entry classification
...
Number
...
COLOR
...
Color of the line to be displayed
...
String
...
CURRENT_TIMESTAMP
...
The date time stamp when the information was collected
...
YYYYMMDDHHMMSS
...
EVENT_SUBTYPE
...
String
...
EVENT_TYPE
...
ORA_DB02_ALRT
...
String
...
INST_HN
...
Oracle monitoring: host_name
...
String
...
INST_ID
...
Oracle monitor: Instance ID
...
Number
...
INST_NM
...
Oracle monitoring: instance_name
...
String
...
LINE
...
Single line of DBA log or profile
...
YYYY-MM-DDTHH:MM:SS.FFFFFF+Z
...
ORANR
...
Oracle alert log ORA - message number
...
Number
...
TS_DATE
...
Oracle alert log timestamp (date)
...
YYYYMMDD
...
TS_TIME
...
Oracle alert log timestamp (time)
...
HHMMSS
...
UTCDIFF
...
The UTC OFFSSET in HHMMSS that the data was collected in
...
HHMMSS
...
UTCSIGN
...
The UTC positive or negative OFFSET indicator. Positive (+) means add UTCDIFF to find the time zone of the data, negative (-) means subtract the UTCDIFF to find the time zone adjusted date time the data was collected in.
...
+ | -
...
XALERT
...
Oracle alert log: Flag "current message log line is an alert"
...
Boolean