Forum Discussion
Dark_Knight666
Silver I
Silver IElastic Data Ingest: Ep.2 – Filebeat
Hello, I'm a little confused as to how to go about formulating a query for step 9? Any advice would be greatly appreciated!
Literally just need to put message : "group" into the KQL search bar
Dark_Knight666Silver I
Silver Ibarney - Thank you. Can I also please ask if you may have done something similar by trying to answer Q11?
barney
Bronze III
Bronze IIII didn't do anything that clever - just compared the users returned in your previous query with the analytics dashboard that was used to answer Q7.
