Solved: Re: Lookup table outputs not appearing in main win...

smileyge · ‎07-12-2013

When I do a search on events and lookup to a file, I get all the outputs on the left as fields and I can filter and see data on them, but the output fields do not appear in the event data itself int he main window or exports of that data. How do I get the Lookup table output fields to show there as well?

smileyge · ‎07-12-2013

Interesting, one must use the As to define it as a local variable to use it in the main window, otherwise the field is only available in the filters on the left hand side. Maybe that's a bug.

So
| lookup user output UserGroup - does not work
| lookup user output UserGroup as UserGroup - works

View solution in original post

smileyge · ‎07-12-2013

Interesting, one must use the As to define it as a local variable to use it in the main window, otherwise the field is only available in the filters on the left hand side. Maybe that's a bug.

So
| lookup user output UserGroup - does not work
| lookup user output UserGroup as UserGroup - works

Lookup table outputs not appearing in main window of search app

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

.conf24 | Registration Open!

ICYMI - Check out the latest releases of Splunk Edge Processor