Hi,
Need help on below issue. I am using cluster command for Summary field.
source="sample_data.csv" index="incidents" sourcetype="csv" | makemv Summary | mvexpand Summary| top limit=500 Summary | eval Summary=replace(Summary,"([\,+])","")|regex Summary = "[a-zA-Z0-9]"|search NOT [ |inputlookup Stop_Words.csv | rename Word as Summary ] | cluster t=0.6 showcount=t field=Summary|table cluster_count cluster_label Summary | sort -cluster_count
below are the results
cluster_count cluster_label Summary
5 107 page
3 10 check
3 28 unavailable
3 41 error
3 54 tool
3 62 issue
3 64 details
Different words are grouped together. I am expecting like below
Job - {Job,Jobs,Job?,Job!}
Error - {Issue,Error}
How can i do that? How can i grouped the similar words together and categorize.
Appreciate for quick help
↧