×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
nischal45
Engager
Member since: ‎07-16-2017
‎05-22-2021
Community Statistics
Posts 2
Solutions 1
Karma Given 0
Karma Received 0
Member Since ‎07-16-2017
Activity Feed
View All

Re: Display ticket status and count

by in Splunk Search
‎05-20-2021 06:41 PM
‎05-20-2021 06:41 PM
I agree but the amount of data i’m dealing with is in millions and was trying to save some computing power. Do you think this query would take lot of processing power if  i’m searching for ~11 months of  data. ... View more

Display ticket status and count

by in Splunk Search
‎05-20-2021 03:05 PM
‎05-20-2021 03:05 PM
Need help with a query please: I have ticket data where the life cycle is Assigned, Work in Progress, Fixed, Closed and the ticket is assigned to our group ABC. I want to display only the tickets which are assigned and in progress to our group ABC. My end goal is to show ABC group's ticket count which are not fixed and closed. I have the below query so far: TICKET         STATUS                         GROUP TIC12345   Assigned                        ABC                        Work in Progress         ABC                        Fixed                                DEF                       Closed                              DEF index=* source=* group=ABC | stats latest(status) as l_status latest(group) as l_group by TICKET | search NOT l_status in("Fixed", "Closed") Result: TICKET          STATUS                  GROUP TIC12345  Work in Progress   ABC I was able to get the data however, I'm also getting ticket which are closed(because it is initially assigned to ABC and later it was closed by DEF). Appreciate your help!  ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎05-22-2021 05:55 AM