copied to Splunk Enterprise setup doc step 8

Tracey Carter · Tracey Carter · commit bf2eb0ad1bb8 · 2024-09-12T13:11:19.000-07:00
diff --git a/logs/set-up-logconnect.rst b/logs/set-up-logconnect.rst
@@ -100,19 +100,19 @@ In your Splunk Enterprise search head, follow the instructions in the guided set
          :width: 100%
          :alt: This screenshot shows the Create user page in Splunk Enterprise where you can assign a user to the service account role.
 
-8. Add a Workload Rule in Splunk Enterprise to limit the amount of time that Log Observer Connect searches can run. This limit maintains a responsive experience for Log Observer users and reduces the chances that Log Observer Connect searches are queued. Follow the guidance in :new-page:`Create a Workload Rule in Splunk Web <https://docs.splunk.com/Documentation/SplunkCloud/9.2.2403/Admin/CreateWLMRules#Create_a_workload_rule_in_Splunk_Web>` and configure the rule as follows:
+8. Add a Workload Rule in Splunk Cloud Platform to limit Log Observer Connect searches to 5 minutes. This limit maintains a responsive experience for Log Observer users and reduces the chances that Log Observer Connect searches are queued. Follow the guidance in :new-page:`Create a Workload Rule in Splunk Web <https://docs.splunk.com/Documentation/SplunkCloud/9.2.2403/Admin/CreateWLMRules#Create_a_workload_rule_in_Splunk_Web>` and configure the rule as follows:
 
 .. code-block:: none
 
    Predicate: user=[your_Log_Observer_Connect_service-account_name] AND runtime>5m
    Schedule: Always on
    Action: Abort search
 
+After creating the Workload Rule, it appears in Workload Management on the Workload Rules tab as follows:
+
 .. image:: /_images/logs/WorkloadMgmt.png
          :width: 100%
-         :alt: This screenshot shows the configuration of the Workload Rule.
-
-The Workload Rule limits each Log Observer Connect search to 5 minutes.
+         :alt: This screenshot shows the configuration of the Workload Rule limiting Log Observer Connect searches to 5 minutes.
 
 9. Obtain certificates for securing inter-Splunk communication. See :new-page:`Configure and install certificates in Splunk Enterprise for Splunk Log Observer Connect <https://quickdraw.splunk.com/redirect/?product=Observability&location=splunk.integration.third.party&version=current>` to learn how. Copy only the first certificate in the chain and paste it on the next page of the guided setup to securely connect Log Observer Connect and your Splunk Enterprise instance.
 
