All Apps and Add-ons
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

classic SQL pivot in splunk

andreafebbo
Communicator
‎09-05-2016 02:36 AM

Hi
I need to do a classic pivoting in splunk but I cannot find a solution.

I have the first table in the following image and it have to become like the second table.

Of course the families and the name are dinamically generated at run time.
The columns 1st rank, 2nd rank and 3rd rank can have a fixed name.

alt text

Thanks a lot

Preview file
1 KB
Reply
1 Solution
Solved! Jump to solution
Solution

renjith_nair
SplunkTrust
SplunkTrust
‎09-05-2016 02:44 AM

Try this

<your base search to result first table> |xyseries family rank name

OR

<your base search to result first table>|chart values(name) over family by rank
Happy Splunking!

View solution in original post

Reply
Solved! Jump to solution
Solution

renjith_nair
SplunkTrust
SplunkTrust
‎09-05-2016 02:44 AM

Try this

<your base search to result first table> |xyseries family rank name

OR

<your base search to result first table>|chart values(name) over family by rank
Happy Splunking!
Reply
Solved! Jump to solution

andreafebbo
Communicator
‎09-05-2016 02:54 AM

This is exactly what I needed!
Thanks a lot!

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Life | Happy Pride Month!

Happy Pride Month, Splunk Community! &#x1f308; In the United States, as well as many countries around the ...

SplunkTrust | Where Are They Now - Michael Uschmann

The Background Five years ago, Splunk published several videos showcasing members of the SplunkTrust to share ...

Admin Your Splunk Cloud, Your Way

Join us to maximize different techniques to best tune Splunk Cloud. In this Tech Enablement, you will get ...