Splunk Search
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to Move the table values to the top with query?

vinod743374
Communicator
‎05-10-2022 06:03 AM

Hii,

I have a data in the Splunk table like the below image.

    Arista     ConsoleRule          Host                    UnknownRule

Passed Failed GDTVFVDFVS-BDHF Passed
Passed Failed FSSGVDF-BDHF Passed
Failed   DGUYSFDF-BDHF Passed
Passed Failed    
Failed Failed DGUYSFDF-BDHF  
Failed Failed DGUYSFDF-BDHF  


Needed like below image 

AristaConsoleRuleHostUnknownRule

Passed Failed GDTVFVDFVS-BDHF Passed
Passed Failed FSSGVDF-BDHF Passed
Failed Failed DGUYSFDF-BDHF Passed
Passed Failed FSSGVDF-BDHF  
Failed Failed DGUYSFDF-BDHF  
Failed      

 


Can anyone Please Help us,
Is there any possible way to achive this.

0 Karma
Reply

gcusello
SplunkTrust
SplunkTrust
‎05-10-2022 06:16 AM

Hi @vinod743374,

could you share your search and a sample of your data?

Ciao.

Giuseppe

0 Karma
Reply

ITWhisperer
SplunkTrust
SplunkTrust
‎05-10-2022 06:16 AM

What search have you used to create your table in the first place?

What criteria are you using to "move" the values up the table?

Your second table doesn't include the same values as the first table so it is a little difficult to determine what it is you are trying to do.

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey

Can’t make it to .conf25? Join us online!

Watch Global Broadcast
Get Updates on the Splunk Community!

Community Content Calendar, September edition

Welcome to another insightful post from our Community Content Calendar! We're thrilled to continue bringing ...

Splunkbase Unveils New App Listing Management Public Preview

Splunkbase Unveils New App Listing Management Public PreviewWe're thrilled to announce the public preview of ...

Leveraging Automated Threat Analysis Across the Splunk Ecosystem

Are you leveraging automation to its fullest potential in your threat detection strategy?Our upcoming Security ...