Solved: how to create hyperlink for a plain text that dire...

REACHGPRAVEEN · ‎02-22-2021

Hi ,

Please help on this @niketn

the below 2 rows as single panel

search by employeeid(hyperlink)

search by app(hyperlink)

once clicked on above hyperlinks it should open new search with search query

index = x | search employeeid =123

index= x | search app = abc

Thanks in advance

renjith_nair · ‎02-22-2021

are you looking for something similar?

<dashboard>
  <label>Hyperlinks</label>
  <row>
    <panel>
      <single>
        <search>
          <query>|makeresults|eval message="search by employeeid"</query>
          <earliest>-15m</earliest>
          <latest>now</latest>
        </search>
        <option name="drilldown">all</option>
        <option name="refresh.display">progressbar</option>
        <drilldown>
          <link target="_blank">search?q=index%20%3D%20x%20%20%7C%20search%20employeeid%20%3D123&amp;earliest=-15m&amp;latest=now</link>
        </drilldown>
      </single>
      <single>
        <search>
          <query>|makeresults|eval message="search by app"</query>
          <earliest>-15m</earliest>
          <latest>now</latest>
        </search>
        <option name="drilldown">all</option>
        <option name="refresh.display">progressbar</option>
        <drilldown>
          <link target="_blank">search?q=index%3D%20x%20%7C%20search%20app%20%3D%20abc&amp;earliest=-15m&amp;latest=now</link>
        </drilldown>
      </single>
    </panel>
  </row>
</dashboard>

Happy Splunking!

View solution in original post

renjith_nair · ‎02-22-2021

are you looking for something similar?

<dashboard>
  <label>Hyperlinks</label>
  <row>
    <panel>
      <single>
        <search>
          <query>|makeresults|eval message="search by employeeid"</query>
          <earliest>-15m</earliest>
          <latest>now</latest>
        </search>
        <option name="drilldown">all</option>
        <option name="refresh.display">progressbar</option>
        <drilldown>
          <link target="_blank">search?q=index%20%3D%20x%20%20%7C%20search%20employeeid%20%3D123&amp;earliest=-15m&amp;latest=now</link>
        </drilldown>
      </single>
      <single>
        <search>
          <query>|makeresults|eval message="search by app"</query>
          <earliest>-15m</earliest>
          <latest>now</latest>
        </search>
        <option name="drilldown">all</option>
        <option name="refresh.display">progressbar</option>
        <drilldown>
          <link target="_blank">search?q=index%3D%20x%20%7C%20search%20app%20%3D%20abc&amp;earliest=-15m&amp;latest=now</link>
        </drilldown>
      </single>
    </panel>
  </row>
</dashboard>

Happy Splunking!

REACHGPRAVEEN · ‎02-23-2021

Hi renjith_nair,

the link opened breaks in sometime . is it with time picker? May i know how to decrease the font of single value displayed please.. Thanks in advance

REACHGPRAVEEN · ‎02-23-2021

ThankYou so much @renjith_nair I appreciate your time and response

how to create hyperlink for a plain text that directs to search query on splunk dashboard

eval

Webinar Recap | Revolutionizing IT Operations: The Transformative Power of AI and ML ...

.conf24 | Registration Open!

ICYMI - Check out the latest releases of Splunk Edge Processor