Hi @santoshpatil01 ,
Your request is lacking useful information for anyone to help. It is not clear the query format that will serve as your base search so maybe you'll have to adjust that to your ...
See more...
Hi @santoshpatil01 ,
Your request is lacking useful information for anyone to help. It is not clear the query format that will serve as your base search so maybe you'll have to adjust that to your reality. Basically you'll need to have a base query that returns all raw data for the tokens wherever they are, and then you create the panels accordingly. If you don't have the input fields to set the tokens, you'll need to set them as well on each panel OR in the dashboard header depending on the filter active necessity.
In each panel, mention the base search making this a linked search, and use as query something like this:
Total request number for security token/priority token filtered by partner name
| search partner=$token.partner$
| stats count as "Total Requests" by security_token, priority_token
Duplicate request number filtered by partner name and customer ID (to check if current expiration time for both tokens are appropriate)
| search partner=$token.parner$ AND customerId=$token.customerId$
| stats count by parner, customerId
| where count>1
Priority token usage filtered by partner name
| search partner=$token.parner$
| stats count by token_name
Response time analysis for security token/priority token
| stats avg(response_time) as response_time by security_token, priority_token
Or if you need 90th percentile instead:
| stats p90(response_time) as response_time by security_token, priority_token
Again, this is just a scratch in the surface as I don't know your query, field names and additional information, but it should be enough for you to kick this off and play around.