Identify Unique events across all fields for diffe... - Splunk Community

Splunk Search

Hi,

Below is my result after doing, xyseries Date_Time,APPROVAL_STATUS,ACT_UW_COUNT

Date_Time	APPROVED	BACK TO SALES	DECLINED	OTHERS
12:46:36	260-199	1-2	18-19	94-0
13:01:35	260-199	1-2	19-20	94-0
13:16:35	260-199	1-2	19-20	94-0
13:31:36	260-199	1-2	19-20	94-0
13:46:36	260-199	1-2	19-20	94-0
14:01:36	260-199	1-2	19-20	94-0
14:16:36	260-199	1-2	19-20	94-0
14:31:36	260-199	1-2	19-20	94-0
14:46:36	260-199	1-2	19-20	94-0
15:01:35	261-199	3-7	19-20	95-0
15:16:36	261-199	3-7	19-20	95-0
15:31:36	261-199	3-7	19-20	95-0
15:46:35	261-199	3-7	19-20	95-0
16:01:36	261-199	3-7	19-20	95-0
16:16:36	261-199	3-7	19-20	95-0
16:31:36	261-199	3-7	19-20	95-0

I want unique records for different approvalstatus w..r.t date_time

expected result

Date_Time	APPROVED	BACK TO SALES	DECLINED	OTHERS
12:46:36	260-199	1-2	18-19	94-0
15:01:35	261-199	3-7	19-20	95-0

...
| stats first(*) as * by APPROVED

Why don't you try stats first() ?

Get Updates on the Splunk Community!

Devesh Logendran, Splunk, and the Singapore Cyber Conquest

At this year’s Splunk University, I had the privilege of chatting with Devesh Logendran, one of the winners in ...

There's No Place Like Chrome and the Splunk Platform

WATCH NOW!Malware. Risky Extensions. Data Exfiltration. End-users are increasingly reliant on browsers to ...

Customer Experience | Join the Customer Advisory Board!

Are you ready to take your Splunk journey to the next level? 🚀 We invite you to join our elite squad ...