All Apps and Add-ons

Dimensions and splunk machine learning app

winknotes
Explorer

Under 'Detect Categorical Outliers' (sgname is the dimension of the name of logical device groupings). The mstats query gathers write response time for a number of device groupings.

| mstats avg(write_response_metric_name) WHERE index=myindex span=5m by sgname

My question is how can I detect outliers accurately but still know which group it's associated with? If I select the sgname and the metric it returns a very different result than just selecting the metric itself.

Any help would be appreciated.

0 Karma
Get Updates on the Splunk Community!

What's New in Splunk Cloud Platform 9.0.2208?!

Howdy!  We are happy to share the newest updates in Splunk Cloud Platform 9.0.2208! Analysts can benefit ...

Admin Console: A Single, Unified Interface for All Your Cloud Admin Needs

WATCH NOWJoin us to learn how the admin console can save you time and give you more control over the Splunk® ...

Getting Started with AIOps: Event Correlation Basics and Alert Storm Detection in ...

Getting Started with AIOps:Event Correlation Basics and Alert Storm Detection in Splunk IT Service ...