Splunk Search

Community Activity

Redirect to dashboard using wildcard I have a dashboard in my app located at myApp/local/data/ui/html/ticket_guru.html This file is returned when I hit: m... by delewis13 Explorer in Splunk Search 09-17-2019 0 1	0	1
Can't make join to compare the presence of a field value Hello, i'm trying to make a dashboard for a client, the dashboard consists basically in a table, which should show a ... by 3DGjos Communicator in Splunk Search 09-17-2019 0 2	0	2
How to build a dashboard to show critical devices without any overlap? Hi Giuseppe, Thanks for your quick reply. See below my search: \| inputlookup perimeter.csv \| eval SplunkHost=lower(... by louispaul76 Engager in Splunk Search 09-17-2019 0 3	0	3
How to sum 2 rows in a table? Hi, In the logs i am analyzing, one of the field's value has changed (change is from '-' to '_'). For example if it... by niddhi Explorer in Splunk Search 09-17-2019 0 2	0	2
tstat count over nested fields using spath and groupby doesnt return result I have a data set as follows, under index market-list { Resource: { Fruit: mango Type: sweet } ... by sidsinhad Engager in Splunk Search 09-17-2019 0 2	0	2
How to exclude results based on previous results Hi Splunkers, I'm pretty new to Splunk and trying to exclude events based on previous results. Here is an example of ... by dudiventura New Member in Splunk Search 09-17-2019 0 3	0	3
How to set the threshold value for each value in the Field? I have results in the table, As shown the below: Name Time Settingname value ... by vvemula Path Finder in Splunk Search 09-17-2019 0 2	0	2
How to compare inputlookup/lookup to search results and return the results from only the search? I am searching for a user list that I have in a inputlookup/lookup CSV. I need to compare results from a search to th... by CSULeigh Explorer in Splunk Search 09-17-2019 0 5	0	5
using a $variable$ in the output of a mapped search I am running a search that gets a list of accounts, multiple records that can have multiple accounts in each event. ... by a238574 Path Finder in Splunk Search 09-17-2019 0 2	0	2
How to run a Shell Script run from a search command? Hi, I am trying to run a shell script from a search command. So I have created a shell script under $SPLUNK_HOME/etc... by SirHill17 Communicator in Splunk Search 09-17-2019 0 6	0	6
regex to replace numeric value as astreik i want search search level field extraction command to replace all numeric value as astriek Name = Dell vostro 20... by DataOrg Builder in Splunk Search 09-17-2019 0 1	0	1
How to calculate Splunk session for a user ? Hi Experts, I want to create a report for last 24 hours which provides the information like how many hours users was... by vikas_gopal Builder in Splunk Search 09-17-2019 0 4	0	4
Is there any way to use fillnull conditionally I have a requirement, where i need to switch the fillnull value between Excluded and N/A. So is there any way that ... by Maniteja81 New Member in Splunk Search 09-17-2019 0 2	0	2
Retrieve Pevious Work and Queries Hi Splunkers. I'm new on this tool so I'm going to ask you a question. I've worked on a little project and also saved... by WhistlingFawn Engager in Splunk Search 09-17-2019 0 1	0	1
Create a colorPalette that includes NOT LIKE case for fields that are blank Working to create a colored chart that when an alarm is acknowledged, the system generates a new message with the use... by noob4now New Member in Splunk Search 09-17-2019 0 0	0	0
Stats count question I have a requirement to find whether multiple users from the same source IP failed authentication for example. My te... by willadams Contributor in Splunk Search 09-17-2019 0 1	0	1
How can I display an apostrophe in a column title? I'm trying to put an apostrophe in a colunm title into a dashboard I tried with renameand fieldformat but it does'nt ... by usernamejpblais Engager in Splunk Search 09-17-2019 0 1	0	1
search/subsearch using json array I have logs being stored in json that shows accounts being given access to data. I need to validate that the accts ar... by a238574 Path Finder in Splunk Search 09-17-2019 0 1	0	1
How to determine if a group is not used ? Hi all, Here is my problem: on the one hand, I have a lookup which is a list of group names. On the other hand, I ha... by ckieken Engager in Splunk Search 09-17-2019 0 2	0	2
Specific Application Search I am trying to write a query that searches for a particular "application" that is installed to a number of machines. ... by willadams Contributor in Splunk Search 09-16-2019 0 1	0	1
Regex working in Regex101 and not Splunk Hello, I've put together two Regex expressions to capture specific words from a syslog entry. First Regex is to capt... by danielkhouri Engager in Splunk Search 09-16-2019 0 5	0	5
Convert string to command, for dynamic union search TL;DR - Is there a way (without custom scripts or commands) to run a command from a string in the format of a union t... by jlr Explorer in Splunk Search 09-16-2019 0 2	0	2
How to extract fields from the below log and craete a cloumn in a tabular form so that i can create a report?? [2019-09-14 23:55:22,499] [INFO] [goldilocks-Process Finished Successfully Hello All, From the above log I want t... by abhi5803 New Member in Splunk Search 09-16-2019 0 0	0	0
Why is there a delay in applying field extraction updates? Whenever I update a field extraction, both from the search head UI field extraction helper, and via props.conf or tra... by phemmer Path Finder in Splunk Search 09-16-2019 2 10	2	10
order result High to Low I have a simple query, listing event codes by host: index=wineventlog sourcetype=WinEventLog:Security Stats count by... by sdewar83 Path Finder in Splunk Search 09-16-2019 0 2	0	2