×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
absreim
Explorer
Member since: ‎01-17-2014
‎06-05-2020
Community Statistics
Posts 6
Solutions 0
Karma Given 2
Karma Received 1
Member Since ‎01-17-2014
Activity Feed
View All

Re: Using data from a csv file in a dashboard

by in Dashboards & Visualizations
‎02-06-2014 03:00 PM
‎02-06-2014 03:00 PM
I finally figured out how to get it to work. It is necessary to use two eval functions to convert the datetime values in the CSV to the epoch form. For some reason for events from the CSV I first had to use eval to assign _time to another variable (I used "Time") for the text format to appear. I then used another eval and the strptime function on the Time variable to convert it to epoch time. So my subsearch ended up this way: append [|inputlookup bsod_samples.csv | eval Time=_time | eval _time=strptime(Time,"%Y-%m-%dT%T.%Q%:z")] Date format in CSV: 02/06/2014 13:46:31 -0500 ... View more

Re: Log messages about undiscovered character set ...

by SplunkTrust in Getting Data In
‎02-07-2014 03:44 PM
‎02-07-2014 03:44 PM
I added it myself, it didn't exist before as well. ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎06-05-2020 02:03 AM
Karma from
View All
Karma given to
View All