Dashboards & Visualizations
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Need to create dynamic dashboard with three parameters

N300853
New Member
‎04-20-2017 06:07 AM

I need to create a dynamic dashboard with both individual view and cumulative view for the below requirement
Need to consolidate the API list name with its result and its time
API_Name | Scheduler Run results Date/Time Fail Pass
Assest API | Pass | 04/14/2017 11.30 AM | 0| 1
Membership API | Pass | 04/14/2017 11.30 AM | 0 |1
Plan sponsor API | Pass | 04/14/2017 11.30 AM |0 |1
Assest API | Fail | 04/14/2017 12.00 PM |1 |0
Membership API | Fail | 04/14/2017 12.00 PM |1| 0
Plan sponsor API | Pass| 04/14/2017 12.00 PM |0| 1
Assest API | Pass| 04/14/2017 12.30 PM |0|1
Membership API | Fail | 04/14/2017 12.30 PM| 1 |0
Plan sponsor API Fail 04/14/2017 12.30 PM 1 0

And also suggest which chart will be best to view this result in splunk dashboard

Tags (1)
0 Karma
Reply

ErikaE
Communicator
‎04-21-2017 09:37 AM

There's probably a more elegant way, but in the past I've appended data summarized the way I want:, e.g. 

| your search here 
| append [ search your search again
| stats sum(Fail) as Fail sum(Pass) as Pass by API_Name]

The addtotals command will give you overall totals, you could do it as part of the base search or the append.

Hope that helps!

0 Karma
Reply
Get Updates on the Splunk Community!

Building Reliable Asset and Identity Frameworks in Splunk ES

 Accurate asset and identity resolution is the backbone of security operations. Without it, alerts are ...

Cloud Monitoring Console - Unlocking Greater Visibility in SVC Usage Reporting

For Splunk Cloud customers, understanding and optimizing Splunk Virtual Compute (SVC) usage and resource ...

Automatic Discovery Part 3: Practical Use Cases

If you’ve enabled Automatic Discovery in your install of the Splunk Distribution of the OpenTelemetry ...