Hi,
I want to count the number of unique element by operation type like,
I tried using visualisation(metric count) but there you can collect distinct count on based of one parameter but not the nested one.(As in i can count total success or failure operation type but not the nested one)
I don't believe you're going to be able to show the unique elements without actually aggregating on them.
Here is the test data I have for anyone wanting to also try:
DELETE /discuss-241883
PUT /discuss-241883
{
"settings" : {
"index" : {
"number_of_shards" : 1,
"number_of_replicas" : 0
}
}
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:17:55.029",
"operation" : "success",
"element" : "1"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:18:55.029",
"operation" : "success",
"element" : "2"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:19:55.029",
"operation" : "success",
"element" : "3"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:20:55.029",
"operation" : "success",
"element" : "1"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:20:57.029",
"operation" : "failure",
"element" : "1"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:20:58.029",
"operation" : "failure",
"element" : "2"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:21:58.029",
"operation" : "failure",
"element" : "2"
}
POST /discuss-241883/_doc
{
"@timestamp" : "July 20th 2020, 16:22:58.029",
"operation" : "failure",
"element" : "2"
}
And a visualization for the error rate:
You could, however, split the table into success and failure and show the top X failed elements:
thanks tylersmalley that works for me.
system
August 18, 2020, 6:55am
4
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
