I want alert triggered when max Elapsed of messages with field Process = Update is greater 1 min
How can I do this. Functional of Field Aggregation Alert Condition have no such ability.
that is currently not possible with vanilla Graylog. You might want to add a feature request for that in Github.