Missing Feilds in Kibana Term Aggregation

kevinmarkley · November 16, 2017, 9:20pm

Hey all,

I am VERY new to ELK, and I am having an issue.

I am moving logs into Elasticsearch via Logstash and Grok. This breaks my logfiles up, how ever when I want to use the Kibana Vizualization (pie chart) and need to select the Term I am looking for, none of the Logstash filtered terms are appearing. Any help would be apprecated.

Kevin

Nathan_Reese · November 16, 2017, 10:23pm

Is the missing field getting put into the document that is stored in logstash? Add the following to your logstash configuration file

  stdout { codec => json }
}```

This will show you what is getting stored in elasticsearch. Make sure your field is in here.

Nathan

system · December 14, 2017, 10:23pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Some fields missing from the kibana "terms" options Kibana	5	7257	March 19, 2017
Field is present but missing Logstash	4	367	November 14, 2018
This field is present in your elasticsearch mapping but not in any documents in the search results. You may still be able to visualize or search on it Elasticsearch	2	4534	July 5, 2017
Problem with terms -- they are ALL raw Kibana	2	484	January 3, 2018
Start learning ELK Elasticsearch	3	382	April 2, 2020

Missing Feilds in Kibana Term Aggregation

Related topics