Splunk Search

Splunk Dashboard questions

sreedhar85in
Engager

I am new to Splunk and I have a requirement as below to show in Splunk dashboard,

  1. Number of groups created/deleted every day – Grouped Bar Chart, with 30 days as default time range
  2. Approved / Rejected / Pending requests every day – Stacked Bar chart, with 30 days as default time range.
  3. Top 10 Approvers in last 30 days – Table (Approver name/email, number of approved/rejected requests)
  4. Total number of requests placed via packs every day – Bar chart, 30-day time range default

My questions here are,

  1. How to create a grouped bar chart ? ( i know to create a plain bar chart with a search result in splunk)
  2. How to create a stacked bar chart ?
  3. How to calculate the top 10 approvers for 30 days. ( i can find the list of approvers for last 30 days)
  4. How to calculate the total number of requests everyday ( i can find the logs which match the requests placed, but how to find the total?)
0 Karma

somesoni2
SplunkTrust
SplunkTrust

Have you gone through the Splunk tutorials? Since you're new, this will give a great learning opportunities and you would be able to find answers to these questions yourself.
https://docs.splunk.com/Documentation/Splunk/7.2.6/SearchTutorial/Basicchart

Other links can be found in this answers post.
https://answers.splunk.com/answers/684944/can-you-suggest-some-splunk-tutorials-for-beginner.html

Get Updates on the Splunk Community!

What’s New in Splunk App for PCI Compliance 5.3.1?

The Splunk App for PCI Compliance allows customers to extend the power of their existing Splunk solution with ...

Extending Observability Content to Splunk Cloud

Register to join us !   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to ...

What's new in Splunk Cloud Platform 9.1.2312?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.1.2312! Analysts can ...