Solved: How to see all values in a field

tmontney · ‎06-29-2016

It says 41 values exist, but it's only showing 10. How do I see the rest, and select from them with checkboxes? This is very useful since as soon as I choose one, then only one will show when I want multiple.

woodcock · ‎06-29-2016

This comes from the top command so just add this to your existing search:

... | top <Some Number Here> SourceName

A 0 should mean unlimited.

View solution in original post

woodcock · ‎06-29-2016

This comes from the top command so just add this to your existing search:

... | top <Some Number Here> SourceName

A 0 should mean unlimited.

kendricbeachey · ‎11-09-2017

When I did top 0 I got zero results. I had 469 results in all, so top 469 got me what I needed. Still, this steered me in the right direction...thanks!

How to see all values in a field

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

May 2026 Splunk Expert Sessions: Security & Observability

Network to App: Observability Unlocked [May & June Series]

SPL2 Deep Dives, AppDynamics Integrations, SAML Made Simple and Much More on Splunk ...

Join the Conversation