×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
luispulido
Engager
Member since: ‎08-08-2025
4 weeks ago
Community Statistics
Posts 3
Solutions 0
Karma Given 3
Karma Received 0
Member Since ‎08-08-2025
View All

Last login time in Splunk UI not updating correctl...

by in All Apps and Add-ons
4 weeks ago
4 weeks ago
Hi, I’ve noticed an inconsistency with the Last Login Time field in Settings > Users. For two specific users, the timestamps shown in the UI don’t match what I see in the _audit index. For one user, for example, the UI shows the last login as May 19, but _audit shows a successful login on August 18. For another user, they have logged in at least two times after the date shown in the UI, but the Last Login Time in the UI has not updated. It looks like the UI field is not being refreshed correctly. Has anyone else experienced this issue? Is there a known way to force the Last Login Time field to update? Does anyone know the root cause of this problem? The Splunk version installed is 9.4.1 enterprise Thanks in advance for your help! ... View more
Labels

Re: Limitation of $click.value$ drilldown in "3D G...

by in All Apps and Add-ons
‎08-11-2025 01:14 PM
‎08-11-2025 01:14 PM
Hello @tej57 ,  Thanks for your response. I can confirm that my dashboard is already built in Classic Dashboard, not Dashboard Studio. However, even in Classic mode, the $click.value$ token is not being populated when clicking a node. The only token that works is $click.name$.   ... View more

Limitation of $click.value$ drilldown in "3D Graph...

by in All Apps and Add-ons
‎08-08-2025 07:46 AM
‎08-08-2025 07:46 AM
In a Splunk dashboard, I’m using the custom visualization "3D Graph Network Topology Viz". The goal is that when clicking on a node, a token is set so another panel can display related details. The issue is: When configuring On Click → Manage tokens on this dashboard, Splunk shows the message: "This custom visualization might not support drilldown behavior." When clicking on a node, the $click.value$ token does not update and literally remains as $click.value$, which confirms that it’s not sending dynamic values. The only token that actually receives data is $click.name$, which returns the node’s name, but not other values I’d like to capture. Has anyone successfully implemented full drilldown support in this visualization or knows how to extend it so that more tokens (like $click.value$) can be populated when clicking on a node? ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
4 weeks ago
Karma given to