Description

The following article describes how to view the results of a scheduled search that has been completed. This allows you to view and export all log messages that resulted from the search for the time period that you chose when scheduling the search.

Note: This article refers to the improved log search functionality. Alert Logic Essentials, Professional, or Enterprise customers can find this within the navigation menu () at Investigate > Search > Log Search. Alert Logic Cloud Defender or Log Manager customers can find it at Search > Log Search BETA.

Solution

1. Within the Search Assistant under the search bar, located the Recently Scheduled Searches column.
   
   
2. Click on the scheduled search of the results you would like to see.
   
   
3. Click View Results. The results will load, and you can review, bookmark, and export them as you please.
   
   Note: You can also immediately export results without loading them by clicking Export Results, which will create a downloadable CSV file with all the search’s log message results.

More information on Saved and Schedule searches is available in the Create & Schedule a Saved Log Search knowledge base article.