alerting-kibana-plugin icon indicating copy to clipboard operation
alerting-kibana-plugin copied to clipboard

Published 20 hours ago • verified publisher icon opendistro-for-elasticsearch

Indexed fields do not show up in OVER option in Create Monitor

Open stefaneg opened this issue 6 years ago • 1 comments

I have an Elastic Search cluster in AWS Ireland, version 6.2.3. When attempting to build a HTTP status 500 error monitor in the Alerts section, there is no way to select a field to filter on when defining a monitor using visual graph.

The index pattern specified matches the index pattern in Settings.

All Documents returns the expected number of documents.

See screenshot.

Screenshot 2019-08-26 at 11 23 07

stefaneg avatar Aug 26 '19 12:08 stefaneg

When using max, sum or other function that uses a field, there are no fields shown either.

The underlying issue seems to be that indexed fields are not being picked up by the Alerting plugin for some reason.

Screenshot 2019-08-26 at 12 42 47

stefaneg avatar Aug 26 '19 12:08 stefaneg