> ## Documentation Index
> Fetch the complete documentation index at: https://docs.blinkops.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Initiate Search

Initiate a search for logs or events and retrieve a task ID that can be used in the `Get Search Results` action to retrieve the search results.

<Note>
  External Documentation

  To learn more, visit the [LogRhythm documentation](https://developers.exabeam.com/logrhythm-siem/reference/post_actions-search-task).
</Note>

## Basic Parameters

<div className="integrations-table">
  | Parameter                 | Description                                                        |
  | ------------------------- | ------------------------------------------------------------------ |
  | Maximum Messages To Index | The amount of results to be indexed.                               |
  | Query Event Manager       | Select to search events or logs.                                   |
  | Query Log Sources         | A comma-separated list of message source IDs to filter results by. |
  | Query Timeout             | The time interval for the search to time-out.                      |
  | Search Mode               | The grouping and sort order.                                       |
</div>

## Advanced Parameters

<div className="integrations-table">
  | Parameter                         | Description                                                                                                                                                                                      |
  | --------------------------------- | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ |
  | Date Criteria Last Interval Value | The numeric amount for the selected time unit.                                                                                                                                                   |
  | End Date                          | The end of the timeframe to search results from.                                                                                                                                                 |
  | Filter - Field Operator           | The condition to put amongst the field filters.                                                                                                                                                  |
  | Filter - Group Operator           | The operator to be applied among multiple filter groups.                                                                                                                                         |
  | Filter - Items                    | The items to filter by. For more information about using this parameter, refer to [Logrhythm's documentation](https://developers.exabeam.com/logrhythm-siem/reference/post_actions-search-task). |
  | Filter - Message Filter Type      | The format of the search results.                                                                                                                                                                |
  | Filter - Mode                     | Select whether to filter in or filter out the results.                                                                                                                                           |
  | Filter - Type                     | The type of the filter.                                                                                                                                                                          |
  | Last Interval Unit                | The time unit used to define the search period.                                                                                                                                                  |
  | Log Source IDs                    | A comma-separated list of log source IDs to filter results by.                                                                                                                                   |
  | Start Date                        | The start of the timeframe to search results from.                                                                                                                                               |
  | Use Inserted Date                 | Choose whether to filter the results by time, or leave both options unselected to disable time filtering.                                                                                        |
</div>

## Example Output

```json theme={"dark"}
{
	"taksId": 0,
	"taskStatus": "string",
	"responseMessage": "string",
	"statusMessage": "string",
	"statusCode": 0
}
```

## Workflow Library Example

[Initiate Search with Logrhythm and Send Results Via Email](https://library.blinkops.com/workflows/initiate-search-with-logrhythm-and-send-results-via-email)

<div className="iframe-wrapper">
  <div className="iframe-media">
    <img src="https://mintcdn.com/blinkops-2/ojHYuDeYX5FWuN8a/img/Icons/play-box.svg?fit=max&auto=format&n=ojHYuDeYX5FWuN8a&q=85&s=b8af968e71438a9499c3223c9bd29fb2" alt="Workflow Library" width="16" height="16" data-path="img/Icons/play-box.svg" />

    Preview this Workflow on desktop
  </div>

  <iframe className="iframe" src="https://library.blinkops.com/workflows/initiate-search-with-logrhythm-and-send-results-via-email/canvas" />
</div>
