Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

to get fields in bar chart

sahana
Engager
‎02-07-2024 09:07 PM

I have a search query statistical result values in the below format

Login mode

Total login

xxx

48

Yyyy

23

aaa

52

bbbb

73

 

Now I need to display a bar chart which shows the login in respective of the login mode and the time selection in the query

 

for example:

sahana_0-1707368814863.png

 

Labels (1)
Labels
0 Karma
Reply

sahana
Engager
‎02-07-2024 09:51 PM

It is supposed to be a bar chart y axis denotes the login count and x- axis represents the time period selection we do in our search.... Those bars are representation of total count values of xxx,yyyy,aaa,bbb

0 Karma
Reply

yuanliu
SplunkTrust
SplunkTrust
‎02-07-2024 11:00 PM

What do you mean by "total count"?  There is only one total in my vocabulary.  That's the opposite of the mockup chart in your original post that shows multiple bars at each depicted time point.  If you don't need to break down, all you need is

| timechart count

 

0 Karma
Reply

yuanliu
SplunkTrust
SplunkTrust
‎02-07-2024 09:24 PM

You mean something like this?

| timechart count by "Login mode"
0 Karma
Reply
Get Updates on the Splunk Community!

Detecting Remote Code Executions With the Splunk Threat Research Team

WATCH NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If exploited, ...

Enter the Splunk Community Dashboard Challenge for Your Chance to Win!

The Splunk Community Dashboard Challenge is underway! This is your chance to showcase your skills in creating ...

.conf24 | Session Scheduler is Live!!

.conf24 is happening June 11 - 14 in Las Vegas, and we are thrilled to announce that the conference catalog ...