Solved: Re: Other use cases for fieldsummary?

cee137 · ‎08-26-2020

I'm not sure if there is an answer to this question but as of right now, I'm using fieldsummary to get a better understanding of my data and specific fields in my data. Buuut, that's about where my fieldsummary journey ends. Are there any other interesting ways you use fieldsummary?

to4kawa · ‎08-26-2020

index=_internal "color" earliest=-7d
| fieldsummary
| rename field as names
| search names="color"
| spath input=values {} output=args
| stats values(names) as names by args
| spath input=args
| xyseries names value count

I made this for a trial.

View solution in original post

to4kawa · ‎08-26-2020

index=_internal "color" earliest=-7d
| fieldsummary
| rename field as names
| search names="color"
| spath input=values {} output=args
| stats values(names) as names by args
| spath input=args
| xyseries names value count

I made this for a trial.

cee137 · ‎09-08-2020

Thank you!

Other use cases for fieldsummary?

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

Are you a member of the Splunk Community?

Other use cases for fieldsummary?

Automatic Discovery Part 1: What is Automatic Discovery in Splunk Observability Cloud ...

Real-Time Fraud Detection: How Splunk Dashboards Protect Financial Institutions

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...