Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Closed alert status with time when it was triggered first time

shoyeb
Observer
‎04-02-2021 02:22 AM

Hi everyone

I need a query to check the alert status close with time and when the same alert got triggered 1 st time in Splunk  it may be 1 week before and now we r closing same alert can be triggered multiple time so need an historical data of the alert with current status closed time

 

 

 

Thanks in advance

Labels (1)
Labels
0 Karma
Reply
Take the 2021 Splunk Career Survey

Help us learn about how Splunk has
impacted your career by taking the 2021 Splunk Career Survey.

Earn $50 in Amazon cash!

Get Updates on the Splunk Community!