In Part 1 of the Set Up Sumo Logic tutorial, you installed a collector on a local machine, and in Part 2, you added a source so that Sumo Logic can ingest the log messages from the apacheaccess.csv file that you downloaded.
Now let's dive in and start taking a look at your data. The best way to get started querying, visualizing and analyzing your data is to install a Sumo Logic app. Sumo Logic apps deliver out-of-the-box dashboards, saved searches, and field extraction for popular data sources. With an app, you can start exploring your data source within minutes.
To view the Apache Access data from your source, let's first install the Apache app.
Install the Apache app
Click App Catalog in the left nav.
Enter Apache in the search field, and press Return to show the matching apps
Double-click Apache to open its app page, and click Add to Library.
The dialog box that opens includes options to choose the folder where you install the app and to select a category for your data source.
Let's keep the folder as the default (Personal).
For the log data source, Select from Existing Source Categories, and select the source category prod/apache/access. Defining an appropriate source category will let you zero in on your data anytime by specifying the source in your query.
Click Add to Library to confirm your selections and add the app to the library.
Now you can share the app with others in your organization so they can see the dashboards and saved searches for the Apache Access app.
Click Personal, if necessary, to return to your personal folder in the library.
Click the app in the library once to display its details pane.
Select Share from the dotted menu.
Select Your organization, and click Save.
Now others in your organization will see the Apache Access app when they select the Org folder in the library.
Check out the app
Now that the app is created and shared, let’s see what it contains. Click Personal on the left nav or on the Library page, and double-click the Apache folder.
Notice that the app includes a bunch of predefined saved searches and dashboards.
Let’s open a dashboard. Scroll down to the Apache - Overview dashboard. The dashboard opens to show panels that are already created for you.
If you don't see data in the panels, it's probably because the date that you set when you downloaded and modified the apacheaccess.csv file in Part 1, doesn't match the date range in the dashboard. You can change the date range in the dashboard, or edit the apacheaccess.csv file on your local machine.
Congratulations! You’ve installed the Apache app to see results from your source.
We’ve been working with the Apache app, but many more apps are available. Check out the Data Types section in DocHub to see what apps are available and how to set them up.