Splunk Cloud Platform

Release Notes

What's new

This page summarizes the new features and enhancements in each release of Splunk Cloud Platform. Use the Version drop-down list to see information for other versions of Splunk Cloud Platform.

The product features deployed in your environment might vary depending on your topology, deployment type, and configuration settings.

Also discover what's new in the following features of Splunk Cloud Platform:

9.3.2411

New feature, enhancement, or change Description
Configure Related Content through Unified Identity Splunk administrators can now configure Related Content from Splunk Observability Cloud by activating Unified Identity between Splunk Cloud Platform and Splunk Observability Cloud. See Configure Splunk Observability Cloud previews for details.
Import Splunk APM service maps into Dashboard Studio Splunk Cloud Platform and Splunk Observability Cloud customers can now leverage their Splunk APM service maps in real time alongside existing dashboards in Dashboard Studio. See Add a Splunk Observability Cloud service map to Splunk Cloud Platform to learn how.
Filter observability metrics-based charts in Dashboard Studio Splunk users can now filter observability metrics-based charts by dimension to accurately show data they are interested in without having to use multiple charts in the same dashboard. Accelerate time to value in dashboard creation by filtering both logs-based and metrics-based charts efficiently. For details, see Filter observability metrics by dimension.
Expanded SPL support for standard mode searches in Federated Search for Splunk Support has been added for the following commands in standard mode federated searches for Federated Search for Splunk:
  • mcollect
  • sendalert
  • sendemail

These commands can now run locally on the federated search head.

See SPL commands that run on the federated search head in standard mode.

Expanded evaluation function support for sdselect searches in Federated Search for Amazon S3 Overall support for evaluation functions in sdselect searches has been improved.
  • Several evaluation functions can now be applied to sdselect GROUPBY and ORDERBY clauses, as well as aggregations and fields selected by sdselect.
  • The json_extract() and json_extract_exact() evaluation functions now support array indexing.
  • In addition, the following evaluation functions are now supported:
    • json()
    • match()
    • replace()

Finally, this release now includes support for extract(), a regular-expression-based field extraction evaluation function that can be used only with sdselect.

See sdselect command syntax details.

Dashboard Studio enhancements See What's new in Dashboard Studio.
Fine-grained authorization of saved searches Administrators now have better management of saved search objects, owners, and properties through new capabilities that can be used to grant granular access to users for saved search management. The new capabilities let users see all saved searches on the system, as well as any users and apps that are associated with the searches, edit saved search properties, and change the saved search owners.

For more information about the new capabilities, see Configure roles for finer-grained management of saved search objects, owners, and properties and Define roles on the Splunk platform with capabilities.

Rewrite of Job management page Updates to the Job management page to improve usability and accessibility using modern technologies and frameworks.
Favorite Knowledge Objects - Dashboards Users can now favorite their dashboards for easier and faster knowledge objects and insights discovery.
Last modified on 28 March, 2025
Welcome to Splunk Cloud Platform   Known and fixed issues for

This documentation applies to the following versions of Splunk Cloud Platform: 9.3.2411

Acrobat logo Download manual
Acrobat logo Download this page

Please expect delayed responses to documentation feedback while the team migrates content to a new system. We value your input and thank you for your patience as we work to provide you with an improved content experience!

Was this topic useful?







You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters