Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Display search results start_time and end_time in email alert subject line

Ravi_c
New Member
‎04-29-2014 07:09 AM

Hi,

I need to display the search results start time and end time in the alert email subject line.

How can I do this, I have included $timerange$ in the subject but in the alert email, it was coming as $timerange$ only , please help.

0 Karma
Reply

lguinn2
Legend
‎04-29-2014 09:53 AM

Here is a list of the variables that you can include in the subject line (you will have to scroll down a bit):

Set up alert actions

Also, try these: $job.earliestTime$ and $job.latestTime$

0 Karma
Reply

somesoni2
Revered Legend
‎04-29-2014 07:55 AM

There is no straightforward way I guess. Have a look at the similar post.
http://answers.splunk.com/answers/63372/how-to-include-searched-date-or-time-range-in-alert-report

0 Karma
Reply
Get Updates on the Splunk Community!

What’s New in Splunk Enterprise 9.4: Tools for Digital Resilience

What’s New in Splunk Enterprise 9.4: Tools for Digital ResilienceTune in to What’s New in Splunk Enterprise ...

Get Schooled with Splunk Education: Explore Our Latest Courses

At Splunk Education, we’re dedicated to providing incredible learning experiences that cater to every skill ...

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL

Splunk AI Assistant for SPL | Key Use Cases to Unlock the Power of SPL  The Splunk AI Assistant for SPL ...