×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
MelanieStrathde
Engager
Member since: ‎03-18-2012
‎06-05-2020
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 1
Member Since ‎03-18-2012
Activity Feed
Topics I've Started
No posts to display.
View All

Re: Daily maximum of concurrent Logins

by in Reporting
‎11-28-2013 11:27 PM
‎11-28-2013 11:27 PM
Thanks everyone, I think I figured it out but it looks pretty messy: "Login" OR "Disconnected" | eval count_adj = if(like(Message,"%Login%"),1,-1) | accum count_adj as count_max | eval count_max = if(count_max<0,0,count_max) | timechart max(count_max) span=1d Just curious if there's a better way? ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM
Karma from
View All