Activity Feed
- Posted Re: At least one log for two, distinct search conditions on Splunk Dev. 01-26-2019 08:24 AM
- Posted Re: At least one log for two, distinct search conditions on Splunk Dev. 01-24-2019 09:57 AM
- Posted At least one log for two, distinct search conditions on Splunk Dev. 01-23-2019 04:26 PM
- Tagged At least one log for two, distinct search conditions on Splunk Dev. 01-23-2019 04:26 PM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 |
01-26-2019
08:24 AM
Thank you so very much. I tried your first solution and was able to customize it to my needs.
... View more
01-24-2019
09:57 AM
The log entries would look something like:
"Job one completed"
"Job two completed"
There could be none or multiple of each. What I need is to ensure that at least one occurs for each job and then represent that on a dashboard, ideally using one query.
... View more
01-23-2019
04:26 PM
We have two jobs that run and produce a distinct log entry for each. I need to add a dashboard panel which monitors these jobs.
The success criteria is that at least one log exist for each job, so zero entries from one job and two from the other would not be a success, only >=1 for each. For this reason, I can't use an OR operator and include both conditions in the search. Oh, and the fields are not extracted.
How can I express this in a search and then in a dashboard panel which translates to something like "OK" or "2".
Thank you in advance for your time.
... View more
- Tags:
- splunk-enterprise
