Solved: Add a Drilldown in Splunk Dashboard with more than...

Gordon1 · ‎01-22-2023

Hello everyone,

How are you all doing?

I have a dashboard ready. I'm having trouble placing the drilldowns.

The case is as follows: each index for example: windows, linux, storage, would have to open a drilldown with the word problem. There are 68 worden problem and 60 indexes.

Do you have any idea?

Thank you very much!

ITWhisperer · ‎01-23-2023

OK so, on which chart or table do you want to add a drilldown?

View solution in original post

ITWhisperer · ‎01-22-2023

It is not clear to me what you are trying to achieve. Please can you share what you currently have in your dashboard, some sample events (anonymised, of course), and what you expect to see when you click on your dashboard i.e. what the drilldown should do?

Gordon1 · ‎01-22-2023

Hello ITWhisperer,

Thank you very much!

I am trying to show for example the result between: Linux and attack, Linus and error, Linux and fail, Linux and failing, Linux and failed, Linux and fout.

Dan the same with Windows, firewall, aplication.

ITWhisperer · ‎01-23-2023

This looks like a spreadsheet rather than a Splunk dashboard. Please share what you already have in Splunk

Gordon1 · ‎01-23-2023

I made this spreadsheet with the reason you can understand what I mean. I have de dashboard.

ITWhisperer · ‎01-23-2023

Cool 😀 Please can you share what you already have?

Gordon1 · ‎01-23-2023

I go it!!!

ITWhisperer · ‎01-23-2023

OK so, on which chart or table do you want to add a drilldown?

Add a Drilldown in Splunk Dashboard with more than 60 indexes and 68 word problem?

drilldown

Introducing Splunk Enterprise 9.2

Adoption of RUM and APM at Splunk

Routing logs with Splunk OTel Collector for Kubernetes