About aag

aag · ‎07-25-2021

Hello, Here is the whole context and question: https://community.splunk.com/t5/Splunk-Search/Aggregate-query-help/m-p/560663/highlight/true#M159340 As a next step from the search query would like to showcase the result on dashboard, where from a drop down when we select a particular attribute it will show the count of total and RecordOutRange on y-axis in time span of every15min on x-axis. Thanks,

aag · ‎07-23-2021

Thanks much @venkatasri ; it worked beautifully ! As a next step would like to showcase the result on dashboard, where from a drop down when we select a particular attribute it will show the count of total and RecordOutRange on y-axis in time span of every15min on x-axis. Something like below: Helpful image from query showcasing all attributes in same graph: Thanks

aag · ‎07-22-2021

Hi Team - I am trying to first search and then aggregate results from following Splunk logs: Raw format: "buildDimensionsAttributes: $attribute: $constraint: $result" sample message: message: buildDimensionsAttributes: 6393: AttributeConstraints(-1.0,99.92,2,DoubleFormat): 99.98 Here in the AttributeConstraints 1st index corresponds to minval here -1.0 2nd index corresponds to maxval here 99.92 3rd index corresponds to decimal here 2 I want to first filter $results which are out of range, here 99.98 is not between [-1.0 , 99.92] and then aggregate (group by) various $attribute and then showcase something like below on the dashboard where we can apply our usual time filters. Attribute# | RecrdCountofOutofRange | TotalRecords Thanks AG

Posts	3
Solutions	0
Karma Given	1
Karma Received	0
Member Since	‎07-22-2021

Online Status	Offline
Date Last Visited	‎07-25-2021 03:12 PM

Help with Dashboarding

Aggregate query help

Help with Dashboarding

Re: Aggregate query help

Aggregate query help