長いタイムスタンプを見やすい形式に変換する方法

Follow
Avatar
Eli Jang
  • Edited

■クエリ

| formatDate(parseDate(creationTime, "yyyy-MM-dd'T'HH:mm:ss"), "MM/dd/yyyy HH:mm:ss") as EventDateTime
| count by CreationTime, EventDateTime

 

■ログメッセージ

 

■クエリ実行結果

 

■参考

https://help.sumologic.com/05Search/Search-Query-Language/01-Parse-Operators/parseDate 

https://help.sumologic.com/05Search/Search-Query-Language/Search-Operators/formatDate 

0

Comments

0 comments

Please sign in to leave a comment.

Didn't find what you were looking for?

New post