Hi elastic team,
My job is to create a ML job in file beat when the message has error in it . For example
DSL query is : "query" : { " match" : { "message" : "error"}}.
Can you give me an example of how saved search is used in creating an advanced ML Job
Easiest way to do this is via a Kibana saved search (shown using v6.4 below):
create the desired search in Kibana, and then click Save:
Name the search:
when creating an ML job - select the name of your saved search from the right hand side:
Configure the rest of your job.
Notice that once you've created the job - the saved search can be seen in the datafeed config:
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.
