Our company changed to Elastic few months ago. before then we used to log a lot of things to one simple SQL table. in SQL i was able to find for each unique identifier last value that was recorded with simple Query. but as i wasn't trained in elastic\kibana magic I'm quite desperate.
Our company is working with lets call them "messages". Each message has its own UniqueID.
logs in kibana looks like:
UniqueID=1,Event=MessageReceived, time
UniqueID=1, event=messageprocessing, time
uniqueID=1, event=finnished, time
UniqueID=2, event=messagereceived, time
UniqueID=2 event=messageprocessing, time
from time to time for some reasons our system didnt finnish the processing process and we have to find out what's wrong.
is there a way i can find what is the last event recorded for each uniqueID we have in last 24hour?? ive tried to google the poop of this but i wasnt able to find a solution that would work for me as i am inexperienced user of Elastic.
Hi @JeremyLoyd,
if you're using version 7.12 of Kibana, you could use Lens to create datatable visualization. Otherwise use the normal datatable.
Here's the example chart that might help you. CustomerId is an equivalent of uniqueId, product_name.keyword is an equivalent of event. Let me know if I understood your problem correctly:
Hi Marta, thanks for reply & sorry for late response.
i cant really figure out how to add Rows and Metrics into Datatable options. all i got is Columns.
Is it problem with our data types (string/number/record) or somewhere in my configuration or im i simply missing some plugin??
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.
