Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How to input a file and retrieve output in splunk dashboard?

djroks89
Explorer
‎12-08-2020 08:03 PM

Hi Team, I have a query that executes in my dashboard. I want to provide the input as a CSV file(with list of IDs) and execute the query? Could you please help me on how to do that? Currently my input : "5741242" My query : (below)

index="amp" (application="create-order" ) "5741242" | rex field=message "(?msi)(?\{.+\})" | spath input=json_message output=externalReferenceId path=correlationId | spath message | rex field=message "\"name\":\"(?(.[^\"]+))" | spath message | rex field=message "\"externalId\":\"(?(.[^\"]+))" | spath input=json_message output=OrderStatus path=data.version | table externalReferenceId, _time,customername,OrderID,OrderStatus,BookingId,AppointmentId

Thanks in advance! Daniel Joseph

0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...