How to create a dashboard and search using the int...

Splunk_Bw · ‎04-16-2015

i have below events in my logs and i want to create a dashboard using various options.

id": "Warehouse40.541-79.826",
    "name": "Warehouse 8",
    "latitude": 40.541,
    "longitude": -79.826,
    "absoluteLatitude": 40.541656,
    "absoluteLongitude": -79.826348,
    "severity": 0,
    "customerIds": [8126,
    3648,
    7831],
    "paratureAssetIds": [],
    "deviceGroupIds": [],
    "warehouseIds": ["552eb471cf04f605f8649bb6",
    "552eb473cf04f605f8649bca",
    "552eb470cf04f605f8649bab"],
    "customerSeverities": {

Let's say I want to create dashboard with:

1) where the range between "latitude": xx.xx "longitude": -xx.xx and "absoluteLatitude": 40.541656, "absoluteLongitude": -79.826348 and severity level=1 and location of the place etc.

2) customerIds{}"=xx and place =XX ans severity etc.

I'm new to development work so any suggestions will be more than welcome.

woodcock · ‎08-08-2015

Assuming you have your data source onbaording done ( inputs.conf ) and field extractions (including making customerids a multivalued field) working (a big if?), you do it with very straight-forward SPL syntax like this:

latitude=xx.xx longitude=-xx.xx absoluteLatitude=40.541656 absoluteLongitude=-79.826348 severity=1

How to create a dashboard and search using the interesting fields from my data?

[Puzzles] Solve, Learn, Repeat: Reprocessing XML into Fixed-Length Events

Data Management Digest – December 2025

Index This | What is broken 80% of the time by February?

Join the Conversation

How to create a dashboard and search using the interesting fields from my data?

[Puzzles] Solve, Learn, Repeat: Reprocessing XML into Fixed-Length Events

Data Management Digest – December 2025

Index This | What is broken 80% of the time by February?