Splunk Search

Community Activity

Top 10 stores for each state Hello folks;Completely new to SPLUNK.I am trying to get a table of the 10 stores for each State for the current week ... by Smiddy Loves-to-Learn Lots in Splunk Search 11-08-2020 0 0	0	0
Updating maximum value I have a data set with values in a specific moment in time. Each day can have multiple values (but in different event... by michaelbosch Observer in Splunk Search 11-08-2020 0 4	0	4
Lookup from multiple table Hello,my goal is to find and combine data from multiple source.Here:employee_lookup: the table for all employee datab... by basics Explorer in Splunk Search 11-08-2020 0 3	0	3
Splunk Keywords definations HI, I am new to Splunk and I am looking forward to learning more. I wanted to know where do I learn what keywords/cod... by basics Explorer in Splunk Search 11-08-2020 0 2	0	2
Query to find out users belong to a particular role Is there any query to find out users belong to a particular role . For example , if i have a role called "least_role"... by kteng2024 Path Finder in Splunk Search 11-07-2020 0 3	0	3
Splunk Education - Down for Maintenance Hello I see that Splunk education is down for maintenance and was wondering when the site would be back up? Kind rega... by fmohideen New Member in Splunk Search 11-06-2020 0 0	0	0
How to use eval with IF? eval A=if(source == "source_a.csv", "1" , "0") The result is 0 in every entry. What is wrong? I have two sources sou... by LH_SPLUNK Explorer in Splunk Search 11-06-2020 1 6	1	6
Run a generating command over a set of values I have a search that will return a number of search ids.index=_audit \| <various modifications>\| table search_idExampl... by burwell SplunkTrust in Splunk Search 11-06-2020 0 3	0	3
Need last logon for a user Need to know what was the last time a domain AD account “username” was logged into and from what server/machine pleas... by chrodriguez Engager in Splunk Search 11-06-2020 0 5	0	5
extract string from _raw data Hello need help to extract the number from this result:Total number of files under /wmq/logs/AMXDEVRC120/active is: 1... by owie6466 Explorer in Splunk Search 11-06-2020 1 2	1	2
Manipulate Token Value and use in search Hopefully, I can explain this to where it makes sense. I have a forum where I use a TEXT input to generate a token to... by ekammer1 Engager in Splunk Search 11-06-2020 0 2	0	2
Sub Search failing due to return with no items I am very close but need some assistance. I am attempting to create an alert based upon the criteria "Free Megabytes... by jmo1 Path Finder in Splunk Search 11-06-2020 0 5	0	5
Predict: In dashboards can we keep bar chart in stacked from even after using predict command?My Case:In my case after using predict command... by renuka Path Finder in Splunk Search 11-06-2020 0 0	0	0
How to exclude computer account name from results I am running a very simple search to determine accounts locked out: server01 OR server02 OR server03 OR server04 Eve... by arkonner Path Finder in Splunk Search 11-06-2020 0 10	0	10
Stats count and field with oldest event I'm sure it's out there somewhere and maybe I'm just brain fried from looking at Splunk for too long, but I wasn't ab... by dangeloma Explorer in Splunk Search 11-06-2020 0 5	0	5
how can i perform a filter after i do a search date reportid notificationid status10/1/2020 5555 1 ... by thaghost99 Path Finder in Splunk Search 11-05-2020 0 2	0	2
Set max concurrent search for a particular saved search Hello community and experts,Is it possible to set a max concurrent search for a particular saved search?The use case ... by takashi6 Explorer in Splunk Search 11-05-2020 0 6	0	6
google and bing keyword I am seeking to get a list of the user typed keyword searches from the proxy activity. Below is what i got but those... by NauticaTQP Engager in Splunk Search 11-05-2020 0 2	0	2
Search optimization . by troy44112 Explorer in Splunk Search 11-05-2020 0 1	0	1
Yes / No Column if EventCode Found in Lookup I have a lookup table with certain Windows Event Codes. I am searching our Windows index for all Windows Event Codes... by aferone Builder in Splunk Search 11-05-2020 0 2	0	2
Find maximum value in one column where a second column meets criteria I believe as with all things Splunk, there is more than one way to solve thisMy data consists of this \| makeresults \|... by bowesmana SplunkTrust in Splunk Search 11-05-2020 1 4	1	4
Date sorting Hi, I have below data: Date: Sep 2020 Aug 2018 Feb 2020 July 2017 Sep 2019 I want to sort the date by month and yea... by ND Path Finder in Splunk Search 11-05-2020 0 2	0	2
reconciliation of field value from Splunk DB connect query HI All,I need to reconcile 2 different swift messages from Splunk DB connectThe key pattern should be<<YYYYMMDD>>#SWI... by ashrafsj Path Finder in Splunk Search 11-05-2020 0 1	0	1
Sum duration to iterations of same id Hey,I have an index 'test_iterations' which contains test data (start time, end time, iterationIndex ane TestName).Ea... by noa Loves-to-Learn in Splunk Search 11-05-2020 0 2	0	2
Can't use stats with custom streaming searchcommand I have a custom search command that extracts a domain name from a url string field you specify into a new "domain" fi... by wesleya Explorer in Splunk Search 11-05-2020 0 2	0	2