×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
cruzalan90
Explorer
Member since: ‎09-12-2012
‎06-05-2020
Community Statistics
Posts 6
Solutions 1
Karma Given 1
Karma Received 5
Member Since ‎09-12-2012
Activity Feed
View All

Re: Getting Date to Display Correctly - CSV Report

by SplunkTrust in Getting Data In
‎10-11-2013 04:53 AM
‎10-11-2013 04:53 AM
Please mark my answer as accepted. ... View more

Re: Removing charts from scheduled PDF reports?

by Splunk Employee in Splunk Search
‎10-06-2014 03:50 AM
3 Karma
‎10-06-2014 03:50 AM
3 Karma
set the display.visualizations.show = 0 for that saved search inside the savedsearches.cof. This answers post also may help http://answers.splunk.com/answers/132453/pdf-chart-does-not-display-statistics-correctly.html ... View more

Re: Creating an interesting field?

by in Splunk Search
‎05-14-2013 12:37 PM
‎05-14-2013 12:37 PM
What I meant by columns was referring to the actual logs. index = hrfarm | rex "^(?:[^ ]* ){2}(? [^ ]+)\s" 2013-05-13 17:32:26,962 C083363 /* GUID: C083363 */ select permission1_.PermissionId as col_0_0_ from... Rex command works just not the correct position and when I change the position to either {1} or {3} its still not correct. Interesting field "account_ID" position {2} returns: GUID: or sometimes commands: position {1} returns: 2013-05-13 17:32:26,962 C083363 position {3} returns: GUID: C083363 (close but I want the first account ID value) ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
Karma given to
View All