<p>I am having a field named rpc in my elasticsearch database and I am displaying it using Kibana. When I search in search bar of kibana like:</p> <pre class="prettyprint"><code>rpc:* </code></pre> <p>It display all the values of rpc field but I want to have only those value to be displayed which are unique.</p>

<p>I have been playing around with Kibana4 since a couple of weeks now. I find it intuitive and simple and the experience has been great till now. Following your question, I tried getting unique results via a <strong>Data Table visualization</strong>. Why? Because I personally find it easier to understand. Following are the steps:</p> <h3>1. Get unique count</h3> <p>Create the visualization (Visualize -> Data Table). First lets get the count of how many unique entries we have for a particular field (We will use this in the later part for verification). I'm using clientip.raw but as I see, it will work just fine with any friendly field name too.</p> <p><img src="https://i.stack.imgur.com/CK10d.png" alt=""></p> <h3>2. Set the aggregation right</h3> <p>Set you aggregation back to <strong>count</strong> and have a <strong>Split Rows</strong> as follows. Not doing this will give you count 1 for each field value (since it is looking for unique counts) when you populate the table. Noteworthy part is setting the <strong>Top</strong> field to <strong>0</strong>. Because Kibana won't let you enter anything else than a digit (Obviously!). This was the tricky part. Hit Apply and you'll get the results. Unique field values and the count of each of them.</p> <p><img src="https://i.stack.imgur.com/FMf72.png" alt=""></p> <h3>3. Verification:</h3> <p>Going to the last page of the table, we see there are exactly 543 results. This is how I know it works. </p> <p><img src="https://i.stack.imgur.com/eeo2X.png" alt=""></p> <h3>What Next?</h3> <p>You save this visualization and add it to a Dashboard. There you can always check the request, query, response and other stats.</p>

<p>Just an addition to the above mathakoot answer.</p> <p>For the user of newer version (which do not allow bucket size of 0 anymore) just set a value greater than the maximum number of result</p> <p><img src="https://i.stack.imgur.com/T0dCt.png" alt="enter image description here"></p> <p>And report the value in the Options>Per Page field</p> <p><img src="https://i.stack.imgur.com/Is9Iv.png" alt="enter image description here"></p>

<p>I am using Kibana 6 so the UI looks a bit different than the older answers here.</p> <p>Here is what worked for me</p> <ol> <li>Create a visualization from your query, I used a line graph type (don't think it matters)</li> <li>Under Data, set metrics aggregation = "Unique Count" and set field to your field.</li> <li>Set x-axis aggregation = "Terms" and set field to your field.</li> <li>Set Size > your number of records</li> <li>Under Metrics and Axes, disable drawing of the graph, circles, and labels (this really helps the UI not lag)</li> <li>Run query and then click "Inspect" and download CSV</li> </ol> <div class="s-table-container"> <table class="s-table"> <thead><tr> <th>Data</th> <th>Metrics & Axes</th> </tr></thead> <tbody><tr> <td><img src="https://i.stack.imgur.com/N9p8A.png" alt="enter image description here"></td> <td><img src="https://i.stack.imgur.com/XeE6X.png" alt="enter image description here"></td> </tr></tbody> </table> </div>

How to list unique values of a particular field in Kibana

I am having a field named rpc in my elasticsearch database and I am displaying it using Kibana. When I search in search bar of kibana like:

rpc:*

It display all the values of rpc field but I want to have only those value to be displayed which are unique.

How do I get distinct values of a field in Elasticsearch?

You can user terms aggregation to get distinct values from your _source. As you have mentioned you don't want any other data from _source hence you can give size=0. This will give you all unique Gender values with their count in the response.

I have been playing around with Kibana4 since a couple of weeks now. I find it intuitive and simple and the experience has been great till now. Following your question, I tried getting unique results via a Data Table visualization. Why? Because I personally find it easier to understand. Following are the steps:

1. Get unique count

Create the visualization (Visualize -> Data Table). First lets get the count of how many unique entries we have for a particular field (We will use this in the later part for verification). I'm using clientip.raw but as I see, it will work just fine with any friendly field name too.

2. Set the aggregation right

Set you aggregation back to count and have a Split Rows as follows. Not doing this will give you count 1 for each field value (since it is looking for unique counts) when you populate the table. Noteworthy part is setting the Top field to 0. Because Kibana won't let you enter anything else than a digit (Obviously!). This was the tricky part. Hit Apply and you'll get the results. Unique field values and the count of each of them.

3. Verification:

Going to the last page of the table, we see there are exactly 543 results. This is how I know it works.

What Next?

You save this visualization and add it to a Dashboard. There you can always check the request, query, response and other stats.

Just an addition to the above mathakoot answer.

For the user of newer version (which do not allow bucket size of 0 anymore) just set a value greater than the maximum number of result

enter image description here

And report the value in the Options>Per Page field

enter image description here

I am using Kibana 6 so the UI looks a bit different than the older answers here.

Here is what worked for me

Create a visualization from your query, I used a line graph type (don't think it matters)
Under Data, set metrics aggregation = "Unique Count" and set field to your field.
Set x-axis aggregation = "Terms" and set field to your field.
Set Size > your number of records
Under Metrics and Axes, disable drawing of the graph, circles, and labels (this really helps the UI not lag)
Run query and then click "Inspect" and download CSV

Data	Metrics & Axes

How to list unique values of a particular field in Kibana

Tags:

kibana-4

kibana

tushan

People also ask