Alerting

How can I show/display alerts on the Messages tab as bulletin messages at the top of Splunk Web?

93591c
New Member

Hi,

I am trying to show/display the results of the Alerts created on the Messages tab. (Some kind of notification on the Messages tab of the UI)
I am a newbie to Splunk (using Splunk 6.2), hence requesting for the solution.

0 Karma

MuS
Legend

Hi 93591c,

if you follow @somesoni2 's first link you will find this command:

curl -k -u admin:changeme https://127.0.0.1:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

Learn about custom alert scripts here http://docs.splunk.com/Documentation/Splunk/6.3.1511/AdvancedDev/ModAlertsIntro and here http://docs.splunk.com/Documentation/Splunk/6.3.1/Alert/Configuringscriptedalerts . Add your custom script in $SPLUNK_HOME/etc/apps/YourAppName/bin and assign it to the alert. Test your script so it will take the correct SPLUNK_ARG_* from the alert and shows as message in the UI.

Here is the command used:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

and the result in Splunk:
alt text

Hope this helps ...

cheers, MuS

klsio
Explorer

I wanna add LINK in messages. How can i do this?

0 Karma

MuS
Legend

So far you could only add text into the message, but just test it and see what happens:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="click this link https://www.google.com";
0 Karma

93591c
New Member

Hi,
Thanks so much for solutions, however I have already tried those solution but it didn't helped me. I am trying to do similar thing with alerts. The result of the alert should be shown as pop up on the message bar(bulletin message).

0 Karma

93591c
New Member

Hi ,
The given links doesn't solve the purpose.Any new suggestions please..

0 Karma
Get Updates on the Splunk Community!

Optimize Cloud Monitoring

  TECH TALKS Optimize Cloud Monitoring Tuesday, August 13, 2024  |  11:00AM–12:00PM PST   Register to ...

What's New in Splunk Cloud Platform 9.2.2403?

Hi Splunky people! We are excited to share the newest updates in Splunk Cloud Platform 9.2.2403! Analysts can ...

Stay Connected: Your Guide to July and August Tech Talks, Office Hours, and Webinars!

Dive into our sizzling summer lineup for July and August Community Office Hours and Tech Talks. Scroll down to ...