Forum Discussion
Dark_Knight666
Bronze III
Bronze IIIElastic Data Ingest: Ep.2 – Filebeat
Hello, I'm a little confused as to how to go about formulating a query for step 9? Any advice would be greatly appreciated!
Literally just need to put message : "group" into the KQL search bar
Dark_Knight666Bronze III
Bronze IIIbarney - Thank you. Can I also please ask if you may have done something similar by trying to answer Q11?
barneyBronze III
Bronze IIII didn't do anything that clever - just compared the users returned in your previous query with the analytics dashboard that was used to answer Q7.
