Ingest, parse, and query your log data

OBSERVABILITY PLATFORM

This feature is available only to specific Chronosphere Observability Platform users, and has not been announced or officially released. Do not share or discuss this feature, or information about it, with anyone outside of your organization.

Logs Explorer helps you search log data so your teams have more detailed context to help identify and fix the root cause of issues.

Use the following documentation to learn about Observability Platform logging and Logs Explorer.

For documentation relating to Logs, powered by CrowdStrike, see the Chronosphere OEM logs documentation.

Ingest

Ingest data from any of the following supported sources.

Google Cloud Platform

Use the Google Cloud Pub/Sub to route logs from Google Cloud Platform.

Logstash

Configure an HTTP output plugin to route logs from Logstash.

OpenTelemetry

Use the OpenTelemetry protocol (OTLP) HTTP endpoint to route logs from OpenTelemetry.

Verify

After ingesting log data, verify that Observability Platform is receiving your logs as anticipated.

Verify log data

Verify that Observability Platform is receiving your log data.

Query

Learn how to construct queries in Logs Explorer and use supported functions and query language.

Explore log data

Use Logs Explorer to focus your search and find important log data.

Query syntax

Learn about the query syntax and your search and find important log data.

Observe

Create standard dashboards to query and visualize logging data. You can also create alerts to watch time series data that's specified in a monitor query, and receive notifications when the query matches specified logs.

Visualize log data

Add logging queries to standard dashboards.

Create monitors and alerts

Create monitors and define alerts to receive notifications.

Connect

Create links to log data from other parts of Observability Platform.

Link to logs from traces

Create links from trace span details to logs.

Link to logs from dashboards

Create links from dashboards to logs.

Budget

Create datasets to map sets of logs to named groups in your organization, and then define budgets to assign percentages of your license consumption to each dataset.

To delete data from your Observability Platform tenant, contact Chronosphere Support.

Create and manage datasets

Create and manage log datasets and define budgets for each.

Configure budgets for datasets

Create budgets to allocate a percentage of your log license limit to datasets.

View license consumption

View persisted log data consumption against license capacity.

Glob syntax Control concepts