elasticsearchkibanakibana-4
Timestamp not appearing in Kibana
I'm pretty new to Kibana and just set up an instance to look at some ElasticSearch data.
I have one index in Elastic Search, which has a few fields including _timestamp. When I go to the 'Discover' tab and look at my documents, each have the _timestamp field but with a yellow warning next to the field saying "No cached mapping for this field". As a result, I can't seem to sort/filter by time.
When I try and create a new index pattern and click on "Index contains time-based events", the 'Time-field name' dropdown doesn't contain anything.
Is there something else I need to do to get Kibana to recognise the _timestamp field?
I'm using Kibana 4.0.
Solution
You'll need to take these quick steps first :
- Go to Settings → Advanced.
- Edit the metaFields and add "_timestamp". Hit save.
- Now go back to Settings → Indices and _timestamp will be available in the drop-down list for "Time-field name".
- What is the difference between CONTAINS and WITHIN on Elasticsearch GeoShape queries?
- How to log using serilog to elasticsearch with Elastic.Serilog.Sinks in .net application
- What's "EIO: i/o error, write" in node.js and how do I eliminate it?
- Kibana has strict security requirements enabled that your current browser does not meet
- What's the difference between search-as-you-type and context suggester?
- Convenient time string parsing in python
- ElasticSearch in Spring with @Query
- What is the best practice for ensuring idempotency for downloading a binary with Ansible?
- Logstash install error: can't get unique system GID (no more available GIDs)
- Can't configure elastic search with spring boot in docker network
- `index_prefixes` in OpenSearch?
- How to get latest values for each group with an Elasticsearch query?
- What does it mean when an Elasticsearch index has yellow health?
- Is it possible to transfer data from Redshift to Elasticsearch?
- How elastic queries work with contradicting statements
- Can filebeat dissect a log line with spaces?
- How to undo setting Elasticsearch Index to readonly?
- Date range filter not getting excluded from date histogram under global aggregations in elastic query
- "United States" not ["United","States"]
- Get all field names in an index elasticsearch python
- How to really reindex data in elasticsearch
- elasticsearch match_phrase returns same score for fields with exact and not exact match
- inner_hits aggregations in ElasticSearch
- Sorting a reverse nested back to parent aggregation
- Elasticsearch: how to list roles assigned to the current SSO user via role mappings
- How to setup password for elasticsearch users?
- OpenSearch prevent script_score from running more than once
- Elasticsearch intermittently killed
- Elasticsearch: Job for elasticsearch.service failed
- problem with adding new node to elasticsearch cluster