FEATURE REQUEST: Splunk Alerts: Please enable to send All Clear/ Resolved Notification

New Member

Hi all,

We are currently using Splunk v 7.2. I am integrating Splunk with OMI and seeing issues in configuring the state changes for Splunk alerts.

I am looking if Splunk could send a All Clear/ Resolved notification every time an alert triggers. This would be highly helpful to determine the state change and to track the tickets down.

Please let me know if this feature is already available in Splunk or can be expected atleast in future releases.

0 Karma
Get Updates on the Splunk Community!

Splunk Training for All: Meet Aspiring Cybersecurity Analyst, Marc Alicea

Splunk Education believes in the value of training and certification in today’s rapidly-changing data-driven ...

The Splunk Success Framework: Your Guide to Successful Splunk Implementations

Splunk Lantern is a customer success center that provides advice from Splunk experts on valuable data ...

Investigate Security and Threat Detection with VirusTotal and Splunk Integration

As security threats and their complexities surge, security analysts deal with increased challenges and ...