×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
chrismcharvey
New Member
Member since: ‎06-07-2019
‎06-05-2020
Community Statistics
Posts 1
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎06-07-2019
Activity Feed
Topics I've Started
No posts to display.
View All

Re: Join two "stats values" columns by similar fie...

by in Splunk Search
‎06-07-2019 12:19 PM
‎06-07-2019 12:19 PM
This has been immensely helpful for me as well! Do you know how you would select just the most recent OIDValue for each OID? For my examples I've got: main search | eval TransferResults = type ."=". status | stats values(TransferResults) by referenceId but each type has multiple statuses: IP=ERROR IP=SUCCESS NATIVE=ERROR NATIVE=SUCCESS X1=ERROR X1=SUCCESS and in this case, the most recent statuses are all =SUCCESS so I'm trying to show that. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM