×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
vishal9023
New Member
Member since: ‎08-26-2019
‎06-05-2020
Community Statistics
Posts 3
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎08-26-2019
Activity Feed
View All

Splunk Integration with UiPath

by in Splunk Search
‎11-26-2019 02:16 AM
‎11-26-2019 02:16 AM
I have robot (TransferFile.xaml) created by UiPath studio. I want to trigger this robot based on dashboard's column value. eg. if Status="No" then trigger that robot. Thanks in Advance.... ... View more

Re: Array possibility in Splunk

by in Splunk Search
‎08-27-2019 06:27 AM
‎08-27-2019 06:27 AM
Hello, The problem is how will I assign new-status if I didn't got that event? We have 7 OPF which are fixed i.e. "2E, PE, PN, TE, TN, SA, AE". But if any of the OPF not generated in log file that information also we have put in column and status should be "NO" . I'm extracting OPF through Rex and it will extract only those which are present. It won't give the names of those OPF's which are not in the log file. I am using like this, index="test-trail" | rex "File\sgeneration\sfor\sMISAOR\sOPF\s(?P<OPF_NAME>[A-Z]{2})File\s(?P<FILE_NAME>A11.*A1.*).txt\scompleted" | rex "File\sgeneration\sfor\sMISAOR\sOPF\s(?P<OPF_NAME>2E)File\s(?P<FILE_NAME>A11.*A1.*).txt\scompleted" | rex "File\sgeneration\sfor\sMISAOR\sOPF\s(?P<OPF_NAME>AE)File\s(?P<FILE_NAME>JK.*).txt\scompleted" | eval Date = strftime(_time, "%Y-%m-%d %H:%M:%S") | stats count by FILE_NAME Date | eval name="2E, PE, PN, TE, TN, SA, AE" | eval OR_NAME=substr(FILE_NAME, 1, 2) | eval OPF_NAME=substr(FILE_NAME, 9, 2) | eval Status=case(count>0, "Yes", count=0, "No") | fields OR_NAME OPF_NAME FILE_NAME count Date Status name | rename count as "Files Received" ... View more

Array possibility in Splunk

by in Splunk Search
‎08-26-2019 09:55 PM
‎08-26-2019 09:55 PM
Hello, I am new to Splunk and wanted to create a dashboard. I have 8 ORs coming through log but the problem is if any OR is missing then its details are not present in log file. I wanted to put status of all ORs whether received or not in tabular form. You can get an idea what I'm trying to do, ORs Status AU YES NY YES SI YES VN YES TD YES ID YES KE NO JP NO What I'm able to do is, I'm fetching only those ORs which are present in log file and giving status as "YES" but unable to specify "NO" for those which are not present in log file. Is there any possibility of arrays in this problem. Thanks in advance. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:04 AM