diff --git a/docs/tutorials/10-minute-walkthrough/apache-elasticsearch.conf b/docs/tutorials/10-minute-walkthrough/apache-elasticsearch.conf
index 7af665529..9c360d236 100644
--- a/docs/tutorials/10-minute-walkthrough/apache-elasticsearch.conf
+++ b/docs/tutorials/10-minute-walkthrough/apache-elasticsearch.conf
@@ -21,7 +21,7 @@ filter {
     type => "apache"
     # Try to pull the timestamp from the 'timestamp' field (parsed above with
     # grok). The apache time format looks like: "18/Aug/2011:05:44:34 -0700"
-    timestamp => "dd/MMM/yyyy:HH:mm:ss Z"
+    match => [ "timestamp", "dd/MMM/yyyy:HH:mm:ss Z" ]
   }
 }
 
diff --git a/docs/tutorials/10-minute-walkthrough/apache-parse.conf b/docs/tutorials/10-minute-walkthrough/apache-parse.conf
index 3e954302c..9d07ef23e 100644
--- a/docs/tutorials/10-minute-walkthrough/apache-parse.conf
+++ b/docs/tutorials/10-minute-walkthrough/apache-parse.conf
@@ -21,7 +21,7 @@ filter {
     type => "apache"
     # Try to pull the timestamp from the 'timestamp' field (parsed above with
     # grok). The apache time format looks like: "18/Aug/2011:05:44:34 -0700"
-    timestamp => "dd/MMM/yyyy:HH:mm:ss Z"
+    match => [ "timestamp", "dd/MMM/yyyy:HH:mm:ss Z" ]
   }
 }