How Create a machine learning job depends a particular value in a field?

rijinmp · July 30, 2018, 1:22pm

Hi All ,

In my log there is a filed named "Log_Type" . This field had multiple values. It may be consist INFORMATION , ERROR or DEBUG etc. I want create a ML job with respect to the distinct count of ERROR in filed "Log_Type" . Is it possible ? . I think it is possible by advanced job and detector . How to configure this advanced job for this purpose.

Sample data

"Log_Type": "ERROR"
"Log_Type": "INFO"
"Log_Type": "DEBUG"

Purpose is , I want to draw the distinct count pattern of ERROR in Log_Type field.

richcollier · July 30, 2018, 8:04pm

Just do count, partitioned on the field Log_Type:

rijinmp · August 9, 2018, 10:07am

Thank you @richcollier

This solution is working well .

Can you give me an overview of all the options in this advanced Detector.

Meaning of function , field_name , over_field_name etc ..

richcollier · August 9, 2018, 11:20am

Here you go: https://www.elastic.co/guide/en/elasticsearch/reference/6.2/ml-job-resource.html#ml-detectorconfig

Topic		Replies	Views
Question on how to create a simple ML job Elasticsearch elastic-stack-machine-learning	12	1103	October 29, 2018
Help with MachineLearning job Kibana elastic-stack-machine-learning	6	411	December 22, 2018
How to use machine learning settings=>( filter section ) to filter out errors in logs which can be used for multiple job ids Kibana elastic-stack-machine-learning	10	946	March 26, 2019
Failed to create outliear detection Elasticsearch elastic-stack-machine-learning	5	267	August 8, 2023
Not able to create a machine learning job Kibana elastic-stack-machine-learning	5	1280	February 18, 2019

How Create a machine learning job depends a particular value in a field?

Related topics