Harinder Bhandari
- Total activity 78
- Last activity
- Member since
- Following 0 users
- Followed by 0 users
- Votes 0
- Subscriptions 45
Comments
Recent activity by Harinder Bhandari Sort by recent activity-
You can not extract a field from the subquery to be used as a field. So we need to use the JOIN as explained here https://help.sumologic.com/05Search/Search-Query-Language/Search-Operators/join
-
Hi Cameron, Since it needs more investigation, It would be best if you open a support ticket with Sumo Logic providing the dashboard and panel name. we will help you with the solution. Thanks, Ha...
-
You can use the format operator. Search for "format" operator in Sumo Logic documentation. 1. Use the "format" operator to reformat the values. For example | 5.2342234 as val| format("%.3f", val) a...
-
You can aggregate the data and remove the _count field using the "field" operator. Can you try this search: _collector=*.app.sce.prd-* and _sourceCategory=ecs and "TaskStatus: (RUNNING->STOPPED)"| ...
-
A Keyword Search Expression defines the scope of data for the query and is always more efficient than using "where" operator. By default, keyword expressions are case-insensitive. Technically there...
-
Can you please try with the July password: Sum0L0gic20!
-
Right now we do not have CRUD API for dashboards. We have a feature request pending for this here:https://ideas.sumologic.com/ideas/SL-I-2454 We are working on this feature actively and will be rel...
-
Sumo Logic has a feature called Surrounding messages that allow you to investigate events surrounding a message from the context of the Host, file name, or category identified enabling you to view ...
-
Can you provide more information about your query and what you are trying to achieve?
-
Yes, it is possible to create an alert for Windows Defender Logs based on a certain Event ID. For example, Event ID 5001 _sourceCategory="windows/events/windows_defender"| parse "EventCode = *;" as...