Cluster Command

Use this command to group similar log records. The cluster command uses machine learning to group log records together based on how similar they are to each other. Clustering helps significantly reduce the total number of log entries the user has to explore and easily points out the outliers. Grouped log entries are presented as message signatures.

Syntax

cluster [<field_name>,(<field_name>)*]

For examples of using this command in typical scenarios, see:

• Use Dictionary Lookup in Cluster in Using Oracle Log Analytics
• Link by Cluster in Using Oracle Log Analytics
• Generate Alerts for Cluster Utilities in Using Oracle Log Analytics

The following command performs a cluster analysis on all the fatal logs.

Severity = fatal | cluster 

The following command performs a cluster analysis on all fatal logs, and returns the summary groupings in ascending order.

Severity = fatal | cluster | sort Count