cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
_splunkker
Explorer
Member since: ‎06-17-2021
‎04-28-2022
Community Statistics
Posts 4
Solutions 0
Karma Given 2
Karma Received 0
Member Since ‎06-17-2021
View All

Re: Help Breaking JSON into multiple events using ...

by in Getting Data In
‎04-27-2022 10:12 PM
‎04-27-2022 10:12 PM
Thanks heaps! I thought as much but better to ask just in case there was some crafty way to do it. Appreciate your help 🙂 ... View more

Help Breaking JSON into multiple events using prop...

by in Getting Data In
‎04-27-2022 02:16 AM
‎04-27-2022 02:16 AM
Hey everyone. Need some help breaking a json event that is ingested in the current nested json format: [ { "title": "Bad Stuff", "count": 2, "matches": [ { "EventID": 13, "EventRecordID": 19700, "User": "NT AUTHORITY\\SYSTEM" }, { "EventID": 16, "EventRecordID": 21700, "User": "NT AUTHORITY\\ADMIN" } ] }, { "title": "Next Bad Stuff", "count": 2, "matches": [ { "EventID": 14, "EventRecordID": 19700, "User": "NT AUTHORITY\\SYSTEM" }, { "EventID": 17, "EventRecordID": 21700, "User": "NT AUTHORITY\\ADMIN" } ] } ]   Would like to break it into seperate events like this: { "title": "Bad Stuff", "count": 2, "EventID": 13, "EventRecordID": 19700, "User": "NT AUTHORITY\\SYSTEM" } { "title": "Bad Stuff", "count": 2, "EventID": 16, "EventRecordID": 21700, "User": "NT AUTHORITY\\ADMIN" } { "title": "Next Bad Stuff", "count": 2, "EventID": 14, "EventRecordID": 19700, "User": "NT AUTHORITY\\SYSTEM" } { "title": "Next Bad Stuff", "count": 2, "EventID": 17, "EventRecordID": 21700, "User": "NT AUTHORITY\\ADMIN" }   What would I need in my props.conf and transforms.conf to achieve this ?   Thanks in advanced splunk community ! Cheers. ... View more

Re: Single value radial - Dashboard Studio

by in All Apps and Add-ons
‎06-29-2021 01:22 AM
‎06-29-2021 01:22 AM
bump ... View more

Single value radial - Dashboard Studio

by in All Apps and Add-ons
‎06-17-2021 10:51 PM
‎06-17-2021 10:51 PM
Hey Splunkers,   Ive been playing around with dashboard studio and trying to customize the single value radial. When I apply the threshold settings, it fills the entire background and radialStrokeColor. How can I edit the config to only apply the threshold colors to the radialStrokeColor ? Image 1 is what I currently have, Image 2 is what I am after based on threshold colors defined. Thanks !         "visualizations": { "viz_5szZptFK": { "type": "viz.singlevalueradial", "dataSources": { "primary": "ds_lnpQPQCW" }, "encoding": { "fill": { "field": "primary[0]", "format": { "type": "rangevalue", "ranges": [ { "from": 100, "value": "#cb3b43" }, { "from": 70, "to": 100, "value": "#ff7152" }, { "from": 50, "to": 70, "value": "#fc9850" }, { "from": 30, "to": 50, "value": "#f4df7a" }, { "from": 10, "to": 30, "value": "#4beba8" }, { "to": 10, "value": "#5fbcff" } ] } } } } },       ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎04-28-2022 01:33 AM
Karma given to
View All