Splunk Enterprise Security
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Slpunk DB connect APP

malisushil
New Member
‎02-19-2020 02:38 AM

i am trying to query the Oracle DB using the statement attached in the case, the query works fine for the batch input, but when i try to put rising column and check point value it throws the error as attached in this case. please update on how to proceed in this case.alt text

image023.png
Preview file
88 KB
0 Karma
Reply

Richfez
SplunkTrust
SplunkTrust
‎02-19-2020 11:53 AM

I'm not sure which side of this equation it's complaining about. A few things to check:

1) Please confirm your source timestamp column is of type TIMESTAMPTZ

2) Try using only one timestamp comparison.

3) Grab a value from the DB for timestamp (any one of them) and try using that particular construct.

A quick search for this shows it looks like your syntax is correct for the to_date, but ... maybe it needs something else.

0 Karma
Reply

malisushil
New Member
‎02-23-2020 01:49 AM

sorry to much oracle for me, can you tell me where to check for the source timestamp column

0 Karma
Reply
Get Updates on the Splunk Community!

Buttercup Games: Further Dashboarding Techniques (Part 7)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Stay Connected: Your Guide to April Tech Talks, Office Hours, and Webinars!

What are Community Office Hours? Community Office Hours is an interactive 60-minute Zoom series where ...

Mastering Data Pipelines: Unlocking Value with Splunk

 In today's AI-driven world, organizations must balance the challenges of managing the explosion of data with ...
Top