Splunk Enterprise

Query

NOORULAINE
Loves-to-Learn Lots

Hi
i am trying to build a dashboard and I require a query to execute below some searches below: 

1. REPORT FALSE POSITIVE PER TOTAL

 2. REPORT MONTHLY SPLUNK ALERT HIGH - MEDIUM - LOW

Can anyone help me in building the same?

Labels (1)
Tags (2)
0 Karma

ITWhisperer
SplunkTrust
SplunkTrust

Start with a search to return the events you are interested in. Since you didn't provide any details of what events you have, nor what you want in your dashboard, I am not sure how much more help can be given.

0 Karma
Get Updates on the Splunk Community!

Celebrate CX Day with Splunk: Take our interactive quiz, join our LinkedIn Live ...

Today and every day, Splunk celebrates the importance of customer experience throughout our product, ...

How to Get Started with Splunk Data Management Pipeline Builders (Edge Processor & ...

If you want to gain full control over your growing data volumes, check out Splunk’s Data Management pipeline ...

Out of the Box to Up And Running - Streamlined Observability for Your Cloud ...

  Tech Talk Streamlined Observability for Your Cloud Environment Register    Out of the Box to Up And Running ...