Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How to dynamically remove a field from search & how to dynamically use threshold from lookup file and change color based on it?

niks987
Explorer
‎12-11-2019 01:11 AM

Hi All,

Hope you all are doing good.

I am stuck with 2 questions may be due to my Splunk query knowledge, hope you allcan help me in resolving the same.

Question 1:-
I have to dynamically remove a Responsetime field from a search when ComponentName is XYZ. I treid using if command splunk fields is not supported in it i believe. We are getting the ComponentName from drilldown via a token.

Question 2:-
I have to dynamically change the color of a panel based on the threshold value from a lookup table. Example:-
for ComponentName=xyz the threshold is 900 than the color should should be changed when threshold > 900 to red and threshold <900 to green.

Please do let me know if you any questions.

Thanks for your help 🙂

0 Karma
Reply
Get Updates on the Splunk Community!