Message Image

Log in

Skip to main content (Press Enter).

Skip auxiliary navigation (Press Enter).

IBM Security

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

Start collaborating

Save the Date! watsonx Hackathon - Pre-TechXchange Conference Event

Skip main navigation (Press Enter).

IBM Security QRadar

View Only

Expand all | Collapse all

AQL Custom query

Arno PretoriusMon September 18, 2023 04:25 AM

Good day All I am trying to add another host in my Hostname field to extract 2 hostname for one Domain. ...

Arno PretoriusMon September 18, 2023 04:27 AM

I have cleaned up my query a bit as well SELECT "Hostname" AS 'Hostname (custom)', AVG("Value") ...

1. AQL Custom query

0 Like
Arno Pretorius
Posted Mon September 18, 2023 04:25 AM

Reply
Good day All

I am trying to add another host in my Hostname field to extract 2 hostname for one Domain. Please see Statement below.

SELECT "Hostname" AS 'Hostname (custom)', AVG("Value") AS 'Value (Average)' from events where ( "Metric ID"='EventRate' AND "deviceType"='368' ) AND "Hostname (custom)" = 'host1'
GROUP BY "Hostname"

I need to extract host2 in the same select...

Any advise?

------------------------------
Arno Pretorius
------------------------------
2. RE: AQL Custom query

0 Like
Arno Pretorius
Posted Mon September 18, 2023 04:27 AM

Reply
I have cleaned up my query a bit as well

SELECT "Hostname" AS 'Hostname (custom)', AVG("Value") AS 'Value (Average)' from events where ( "Metric ID"='EventRate' AND "deviceType"='368' AND "Hostname (custom)" = 'host1')
GROUP BY "Hostname"

------------------------------
Arno Pretorius
------------------------------

Original Message

Powered by Higher Logic