Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
×
Join the Conversation
Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Find Answers
- :
- About sabithanitg
sabithanitg
New Member
Member since:
02-04-2015
06-05-2020
Community Statistics
| Posts | 6 |
| Solutions | 0 |
| Karma Given | 0 |
| Karma Received | 0 |
| Member Since | 02-04-2015 |
Activity Feed
- Posted How to package Splunk app with lookup tables, which contains company specific data. on All Apps and Add-ons. 05-08-2015 09:27 AM
- Tagged How to package Splunk app with lookup tables, which contains company specific data. on All Apps and Add-ons. 05-08-2015 09:27 AM
- Posted Re: rex command to extract fields from field( Message=Document 345, Microsoft Word Text **owned by** first.last **on** abc1234 **was** some text **on** some text.............)? on Splunk Search. 04-25-2015 09:06 PM
- Posted Re: rex command to extract fields from field( Message=Document 345, Microsoft Word Text **owned by** first.last **on** abc1234 **was** some text **on** some text.............)? on Splunk Search. 04-24-2015 10:34 AM
- Posted Re: rex command to extract fields from field( Message=Document 345, Microsoft Word Text **owned by** first.last **on** abc1234 **was** some text **on** some text.............)? on Splunk Search. 04-24-2015 07:53 AM
- Posted rex command to extract fields from field( Message=Document 345, Microsoft Word Text **owned by** first.last **on** abc1234 **was** some text **on** some text.............)? on Splunk Search. 04-24-2015 06:54 AM
- Tagged rex command to extract fields from field( Message=Document 345, Microsoft Word Text **owned by** first.last **on** abc1234 **was** some text **on** some text.............)? on Splunk Search. 04-24-2015 06:54 AM
- Posted I am trying to create a report for displaying number of times, replacement of printer supply unit in 1 year, by calculating when the supply level is zero, by IP. Is there any one to help on this? on Splunk Search. 04-20-2015 01:35 PM
- Tagged I am trying to create a report for displaying number of times, replacement of printer supply unit in 1 year, by calculating when the supply level is zero, by IP. Is there any one to help on this? on Splunk Search. 04-20-2015 01:35 PM
Topics I've Started
| Subject | Karma | Author | Latest Post |
|---|---|---|---|
| 0 | |||
| 0 | |||
| 0 |
05-08-2015
09:27 AM
How to package Splunk app with lookup tables, which contains company specific data.
... View more
- Tags:
- package
04-25-2015
09:06 PM
I am using the first one.It worked perfectly.
Thank you very much and appreciate your help.
... View more
04-24-2015
10:34 AM
Thanks stephane, With few changes it is working to extract for few values not all of them.
Is there any possibility of extracting all.
For example DocumentType field value contains as below similarly for Location
Microsoft Outlook - Memo Style,
11-02-099.pdf,
https://h44444.www3.hp.com/HPCSN/EtFOnline/fff_ff_notes
... View more
04-24-2015
07:53 AM
Thanks for the answer Stephane, This is not showing up any value for these fields. Is there any other method to achieve this?
... View more
04-24-2015
06:54 AM
rex command to extract fields from Message=Document 345, Microsoft Word Text owned by first.last on abc1234 was some text on some text.............
Marked with bold text are common in all the values.
result of field names should look like this.
DocumentNum=Document 345
DocumentType = Microsoft Word Text
username=first.last
device=abc1234
location=some text
I have started with following rex command, but I cannot look for the text till "owned by" and for user name "owned by" to "on" and so on
| rex Message="(?[^\,])\,(?[()?:owned]*)" | table DocumentNum DocumentType
my result is looking like this: DocumentNum = Document 345
DocumentType = Micro
... View more
- Tags:
- rex
04-20-2015
01:35 PM
create a report for displaying number of times, replacement of printer supply unit in 1 year, by calculating when the supply level is zero, and by IP.
... View more
- Tags:
- stats
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
06-05-2020
02:04 AM
|
