Dashboards & Visualizations
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

What is the definition of this DensityFunction macro so I can create it or do I need to download this macro?

POR160893
Builder
‎04-03-2023 02:16 AM

Hi,

I am creating a dashboard where I need to use the density function to show anomalies as follows:
| tstats count as total where index=dns by _time span=1h
| fit DensityFunction total dist=norm show_density=true
| bin total bins=100
| stats count avg("ProbabilityDensity(total)") as pd by total

However, when using the ProbabilityDensity function within the machine learning app in Splunk, no results are outputted.

In addition, I see no Probability Density macros "out-of-the-box" within the Machine Learning app either.


What is the definition of this DensityFunction macro so I can create it or do I need to download this macro?

 

Many thanks,

Labels (5)
0 Karma
Reply

tscroggins
Influencer
‎04-07-2023 07:06 AM

Hi,

Is Splunk Machine Learning Toolkit correctly installed? $SPLUNK_HOME/etc/apps/Splunk_ML_Toolkit/bin/algos/DensityFunction.py should be present.

Are you receiving any errors or warnings after the fit command?

0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...