Splunk Search

Community Activity

Longer time frame does not return results? When I run the following query: "com.server" \| table id uri statusCode _time \| join type=inner saga_id [search "Secon... by yk010123 Path Finder in Splunk Search 04-28-2023 0 3	0	3
How to create a search for Hosts that failed Authentication this week but were successful last? I have a table that has the following fields: IPHost_Auth _time The _time field shows the time the host was authenti... by atebysandwich Path Finder in Splunk Search 04-28-2023 0 8	0	8
How to use MV expand to extract a data grouped by itself? Hi splunk community I am currently trying to break up a log. It is in this format after converting to a json Each... by Spunk_user89 New Member in Splunk Search 04-28-2023 0 4	0	4
Splunk Custom Search Commands: How can I write the generator.py script so that it calls the script.py? Hi everyone,I have a script.py which requires one argument to run normally, for eg. script.py D:\Downloads\12-Dec-202... by siu Loves-to-Learn Everything in Splunk Search 04-28-2023 0 5	0	5
How to create a custom generating search command? So I have a python script called Analysis.py And normally I would run it locally like this Analysis.py <filepath>, s... by siu Loves-to-Learn Everything in Splunk Search 04-28-2023 0 6	0	6
How to display two result count in value visualization? Hi community, I have the follow search that return two number for today and yesterday device count per index xyz but... by Roberto-P Explorer in Splunk Search 04-28-2023 0 3	0	3
How to find traffic change from a search? I have a search and resultant output like shown below:search is --> eventtype=cacti:mirage host=onl-cacti-02 rrdn=tra... by phularah Communicator in Splunk Search 04-28-2023 0 1	0	1
Why does chart remove the empty x-values made with \|makecontinuous? I want to make an evenly spaced x-axis in a dataset with gaps in it and then use chart to make a trellis view based o... by HrCivilingeniør New Member in Splunk Search 04-28-2023 0 0	0	0
Is there a way to move Saved Search results (CSV) obtained via PowerShell to a windows directory? I have spent a LOT of time searching for a way to do this. I have saved searches within Splunk Enterprise 9.x (the ... by NHD86 Loves-to-Learn Lots in Splunk Search 04-28-2023 0 0	0	0
Why are Splunk Field alias created from Ui not visible? So I have an application that runs as a docker container in AWS ECS Fargate, and in log configurations for the contai... by Yashprime07 Explorer in Splunk Search 04-27-2023 0 7	0	7
Why are values are missing and incorrect when I used stats values() in chart? I had a tabular chart which has component, basket and age column. But the problem was I had same component with diffe... by Vish Explorer in Splunk Search 04-27-2023 0 2	0	2
How to search use stats count filter two fields? Hi All, I am doing a search for src_ip and DestAdd in a database within a 1 minute time frame. I need to look for src... by longmen Path Finder in Splunk Search 04-27-2023 0 1	0	1
How to define new field by time ranges? I'm trying to create the below search with the following dimensions. I'm struggling to create the 'timephase' column.... by hollybross1219 Path Finder in Splunk Search 04-27-2023 0 8	0	8
How to find field with maximum value dynamically? I have a data like this , and i want to display the step with maximum value. Detail: { [-]Id: 12345678RequestComplete... by sivaranjani Explorer in Splunk Search 04-27-2023 0 2	0	2
Why am I getting where clause? I have a search where I am comparing two indexes for a matching cell and I am trying to filter where Business = 1X...... by hantun Loves-to-Learn Lots in Splunk Search 04-27-2023 0 7	0	7
How can I sort data into a graph? I have a table like below.Date, count22/12/2014,923/12/2014,1924/12/2014,166/01/2015,47/01/2015,74/02/2015,425/02/201... by karthikTIL Path Finder in Splunk Search 04-27-2023 0 8	0	8
Summarize data by Kirthika Path Finder in Splunk Search 04-27-2023 0 5	0	5
Is there a way to regex first part of the URL? Hi, All my URLs have this general format https://value.company.com.au/etc/ Is there a way I can extract URLs and alw... by ebs Communicator in Splunk Search 04-27-2023 0 4	0	4
How to compare current week to last week in a visualisation? Hello, im looking to compare a count of servers that was reporting into splunk this week and compare to the amount th... by supersnedz Path Finder in Splunk Search 04-27-2023 0 4	0	4
Can I add federated search as root search in dataset? CAN I ADD FEDERATED SEARCH AS ROOT SEARCH IN DATASETS? I WAS ABOUT TO CREATE A DATAMODEL FOR A DASHBOARD WITH MULTIPL... by Splunker_S New Member in Splunk Search 04-27-2023 0 0	0	0
How to create a new Quarter field with specific conditions? Hi, I need to set a condition in Splunk for how the business quarters are set up in my place of work. In my job, the... by POR160893 Builder in Splunk Search 04-27-2023 0 2	0	2
How to use timechart in 3 directions? Hi all I know that other people have asked similar questions but I have had no success in replicating their use cases... by SquarePeg Engager in Splunk Search 04-27-2023 0 1	0	1
Is there a way to get the number to only show if it sees an account rather than account and every log associated with it Hello all, im looking to create a dashboard for certain accounts. I have a list of 20 accounts that need to be monito... by supersnedz Path Finder in Splunk Search 04-27-2023 0 3	0	3
Need Help with a Splunk Search and modifying thresholds based don day and time? I am trying to modify Thresholds based on the day and time. I have the chart completed, just need help with the thres... by phularah Communicator in Splunk Search 04-27-2023 1 4	1	4
How long can a windows or unix host keep logs in the Splunk agent? I will to make a back up of all the logs of splunk, so we want to be sure that all the host save the logs for a speci... by BryanCaballero New Member in Splunk Search 04-26-2023 0 1	0	1