New reports:
SearchHeadLevel - Lookup definitions with no lookup file or kvstore collectionSearchHeadLevel - User created kvstore collectionsSearchHeadLevel - Search Queries summary loadjob and savedsearch usage in audit logs
Updated alerts:
AllSplunkEnterpriseLevel - Splunkd Log Messages Admins OnlySearchHeadLevel - Detect bundle pushes no longer occurringSearchHeadLevel - macros in useSearchHeadLevel - Search Messages user level
Updated reports:
SearchHeadLevel - audit.log - lookup usage- added regex as the search field sometimes doesn't auto-extract correctlySearchHeadLevel - Detect lookups that have not being accessed for a period of time- added automatic lookups inSearchHeadLevel - platform_stats access summary- criteria updateSearchHeadLevel - Lookup file owners- corrections to ensure that automatic lookups are not includedSearchHeadLevel - Search Queries summary non-exact match- minor criteria update