Can you help me with my email alerts issue?

New Member


I'm trying to configure some alerts by email, but I got the following error:

Sending the test email failed: command="sendemail", (550, '5.7.1 Client does not have permissions to send as this sender') while sending mail to: myemail 

The following search command works fine:

head 100 | top 2 host | sendemail to="myemail" server=myserver:25 from=emailalerts

Any suggest? Thanks

0 Karma


Hi @alva_drian

I think your mail relay is rejecting the mail becuase the "from" address you are specifying is not allowed.

See here:

If you can't make that change on the relay, then follow the instructions here: to set the "send mail as" value to be the same as what you are running in your ad-hoc alert.

Hope this helps!

0 Karma
Get Updates on the Splunk Community!

.conf24 | Day 0

Hello Splunk Community! My name is Chris, and I'm based in Canberra, Australia's capital, and I travelled for ...

Enhance Security Visibility with Splunk Enterprise Security 7.1 through Threat ...

 (view in My Videos)Struggling with alert fatigue, lack of context, and prioritization around security ...

Troubleshooting the OpenTelemetry Collector

  In this tech talk, you’ll learn how to troubleshoot the OpenTelemetry collector - from checking the ...