Hello, I am working on a search and eventually a dashboard that displays the count per field based on the characteristics or results from an initial search. I'm pulling all my data into Splunk using the DB connect app. For example, let's assume our entire data set consists of three fields (ID, eye color, and hair color) and four events. Silly example, but bare with me. ID Eye Color Hair Color 1 Blue Brown 2 Green Brown 3 Blue Black 4 Brown Brown Now we want to find the count of IDs for each field based off the characteristics of a specified ID. In other words, if we choose ID 1 as our input, then with some Splunk magic the dashboard will spit out the following table (Note: I am not worried too much about formatting at this point). Eye Color Eye Color Count Hair Color Hair Color Count Blue 2 Brown 3 Does anyone have any ideas how I can go about writing this search? I originally thought I could pull in two sets of data (all the data and the row I want to pivot off of) and then either append or join the two sets together. Thanks in advance, please let me know if my questions makes sense or if I need to clear something up. ... View more