- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you are using the alert to send an email, you can customize the email message with any text you want, as well as tokens to include variables from the search that generated the alert. See Set up alert actions > Email notification in the Alerting Manual.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
You can create a contextual message for your alert and populate the event corresponding to the alert and the message in and index where you will go and retrieve them after.
to do that you have to buid your alert like this:
|Eval message= or < if(.......) > |table message otherfields|collect index youIndex
after setting your alert as you like where the alert will be triggered, you will have it in yourIndex with your message.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
feel free to vote and accept .....
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
If you are using the alert to send an email, you can customize the email message with any text you want, as well as tokens to include variables from the search that generated the alert. See Set up alert actions > Email notification in the Alerting Manual.
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Nice...Thank you..
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
Only if you want to send an email message, you can add a message
