Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How can I show/display alerts on the Messages tab as bulletin messages at the top of Splunk Web?

93591c
New Member
‎10-20-2015 07:51 AM

Hi,

I am trying to show/display the results of the Alerts created on the Messages tab. (Some kind of notification on the Messages tab of the UI)
I am a newbie to Splunk (using Splunk 6.2), hence requesting for the solution.

0 Karma
Reply

MuS
Legend
‎11-29-2015 06:02 PM

Hi 93591c,

if you follow @somesoni2 's first link you will find this command:

curl -k -u admin:changeme https://127.0.0.1:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

Learn about custom alert scripts here http://docs.splunk.com/Documentation/Splunk/6.3.1511/AdvancedDev/ModAlertsIntro and here http://docs.splunk.com/Documentation/Splunk/6.3.1/Alert/Configuringscriptedalerts . Add your custom script in $SPLUNK_HOME/etc/apps/YourAppName/bin and assign it to the alert. Test your script so it will take the correct SPLUNK_ARG_* from the alert and shows as message in the UI.

Here is the command used:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

and the result in Splunk:
alt text

Hope this helps ...

cheers, MuS

Preview file
1 KB
Reply

klsio
Explorer
‎03-06-2016 05:16 PM

I wanna add LINK in messages. How can i do this?

0 Karma
Reply

MuS
Legend
‎03-06-2016 05:23 PM

So far you could only add text into the message, but just test it and see what happens:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="click this link https://www.google.com";
0 Karma
Reply

93591c
New Member
‎10-20-2015 07:51 PM

Hi,
Thanks so much for solutions, however I have already tried those solution but it didn't helped me. I am trying to do similar thing with alerts. The result of the alert should be shown as pop up on the message bar(bulletin message).

0 Karma
Reply

93591c
New Member
‎11-29-2015 05:41 PM

Hi ,
The given links doesn't solve the purpose.Any new suggestions please..

0 Karma
Reply
Get Updates on the Splunk Community!

Index This | I’m short for "configuration file.” What am I?

May 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with a Special ...

New Articles from Academic Learning Partners, Help Expand Lantern’s Use Case Library, ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Your Guide to SPL2 at .conf24!

So, you’re headed to .conf24? You’re in for a good time. Las Vegas weather is just *chef’s kiss* beautiful in ...