Dashboards & Visualizations

Event Timeline viz release

indeed_2000
Motivator

Hi

I have log file like this:

2021-07-06 11:09:18,610 INFO   [deployment] WFLYSRV0027: Starting deployment of "APPS-7.1.2-CUS.war" (runtime-name: "APPS-7.1.2-CUS.war")

I want to create release timeline (event timeline viz) like this:

https://cdn.apps.splunk.com/media/public/screenshots/25938208-2138-11e9-9f51-0a7dd926fc04.png

 

CUS= means customers (need to show in left, groupby CUS e.g CUS1,CUS2,…)

7.1.2=release number (as labels, groupby versions 1.1.2 , 7.1.2 , …)

 

Any idea?

Thanks

Labels (4)
Tags (3)
0 Karma

kamlesh_vaghela
SplunkTrust
SplunkTrust

@indeed_2000 

If you have installed this app in your local just check landing dashboard with example.  https://localhost:8000/en-US/app/event-timeline-viz/event_timeline_viz

Screenshot 2021-07-13 at 11.02.37 AM.png

So for further help, can you please share your sample search and sample tabular data from that search? 

If you need help on search design then please share proper event fields you want to use in that search.

KV

0 Karma
Get Updates on the Splunk Community!

Splunk Forwarders and Forced Time Based Load Balancing

Splunk customers use universal forwarders to collect and send data to Splunk. A universal forwarder can send ...

NEW! Log Views in Splunk Observability Dashboards Gives Context From a Single Page

Today, Splunk Observability releases log views, a new feature for users to add their logs data from Splunk Log ...

Last Chance to Submit Your Paper For BSides Splunk - Deadline is August 12th!

Hello everyone! Don't wait to submit - The deadline is August 12th! We have truly missed the community so ...