Splunk Search
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Object Name filtering with Diffrent folder structrue

shishirkumar
Engager
‎01-04-2019 03:45 AM

we have one Network folder : clientreports

Standard Reports Structure as :
• Path/Foldername/Report Type/Client/Report Period Folders/Files.
Ex: R:/Clientfolder/Coaching Dashboard/ BCBS AZ/YYYY_MM/PDF, Excel.

This is Report Type : I used Rex functionn to read and extract Report Type from Object_Name.
alt text

having 27 standard reports folder structure ,

1) MonthlyActivityReport.
2) MonthlyActivityReportDashboard
3) CoachingDemographicReport(vc,lc,wt)
4) CoachingDemographicReport_LC
5) CoachingDemographicReport_VC
6) CoachingDemographicReport_WT

7) QuarterlyProgressReport

--
27) bla bal bla

1st Question is how to Extarct only these 27 folder structure in Splunk Because of in Object name we have different different folder structure
some example as :

1) Report Type/Report Category/ Files -

EX: iHealth_OpenCaseReport/Datafiles,logfiles/Text Files,Excel file.
2) ReportType/Report Period Folder/ Files -
Ex: NICU_Outcomes/2015,2016/PDF Files or Excel Files.
3) Report Type/Client/Report Period Folders/Files.
Ex: aternityOutcomes/ BCBS AZ/2014_12,2015_12/PDF Files.

How

Tags (1)
Preview file
15 KB
0 Karma
Reply
Get Updates on the Splunk Community!

Cisco Catalyst Center Meets Splunk ITSI: From 'Payments Are Down' to Root Cause in ...

The Problem: When Networks and Services Don't Talk Payment systems fail at a retail location. Customers are ...

Print, Leak, Repeat: UEBA Insider Threats You Can't Ignore

Are you ready to uncover the threats hiding in plain sight? Join us for "Print, Leak, Repeat: UEBA Insider ...

New Year, New Changes for Splunk Certifications

As we embrace a new year, we’re making a small but important update to the Splunk Certification ...