Anomaly Detective for Splunk v3.x Legacy Support

Support Center

Tips and Tricks (v3.x)

  • bucketspan - Best Practices

    All modes of Anomaly Detective can leverage a command-line option called "bucketspan" - it is an optionally sp...

    Oct 28, 2014 11:34AM EDT
  • Anomaly Score and Probabilities

    In the Anomaly Detective, there are a few key metrics of the results that are worth understanding: Probabilit...

    Apr 22, 2015 08:54AM EDT
  • Compare Mode - Best Practices

    The Compare mode is a useful way to compare two time ranges against each other, looking for statistical anomal...

    Jun 17, 2013 11:11PM EDT
  • Custom Anomaly Dashboards

    NOTE: Prelert Dashboard components leverage Splunk's "advanced XML" which is compatible with Splunk v5.x and v...

    Jul 16, 2014 02:24PM EDT
  • Analyzing only "top N" items

    A customer of ours recently inquired about the possibility of only analyzing data from his "top 5" of his clie...

    Feb 05, 2014 01:46PM EST
  • bufferSpan - Practical Usage

    Hidden in the "Advanced settings" area of the Real-Time search configuration page, the bufferSpan setting is d...

    Feb 28, 2014 11:20AM EST
  • Multi-sourcetype Analysis

    In order to simultaneously analyze multiple fields across multiple sourcetypes, the Anomaly Detective relies o...

    Oct 27, 2014 04:37PM EDT

Contact Us

  • Post a Public Question
  • Email Us
  • @prelertsupport on Twitter
    Or call us @ 888.prelert (Toll: +1 508 309 4445)
seconds ago
a minute ago
minutes ago
an hour ago
hours ago
a day ago
days ago
Invalid characters found