Search enables you to quickly select fields that have common groupings. In the query, you can specify a group alias that displays all fields or columns associated with the group. The following table provides some common group aliases.
|
Group Alias |
Includes a list of these fields or columns... |
|---|---|
|
category |
All category fields |
|
custom float |
All custom float fields |
|
domain |
All domain fields |
|
hostname |
All hostname columns |
|
id |
All ID columns |
|
ip |
All IP address columns |
|
ip6 |
All IPv6 address columns |
|
label |
All label columns |
|
mac |
All MAC address columns |
|
path |
All path columns |
|
port |
All port columns |
|
timestamp or time |
All time columns (device receipt time, agent receipt time) |
|
uri |
All URI columns |
|
url |
All URL columns |
|
username or user |
All user columns |