Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How can I show/display alerts on the Messages tab as bulletin messages at the top of Splunk Web?

93591c
New Member
‎10-20-2015 07:51 AM

Hi,

I am trying to show/display the results of the Alerts created on the Messages tab. (Some kind of notification on the Messages tab of the UI)
I am a newbie to Splunk (using Splunk 6.2), hence requesting for the solution.

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎11-29-2015 06:02 PM

Hi 93591c,

if you follow @somesoni2 's first link you will find this command:

curl -k -u admin:changeme https://127.0.0.1:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

Learn about custom alert scripts here http://docs.splunk.com/Documentation/Splunk/6.3.1511/AdvancedDev/ModAlertsIntro and here http://docs.splunk.com/Documentation/Splunk/6.3.1/Alert/Configuringscriptedalerts . Add your custom script in $SPLUNK_HOME/etc/apps/YourAppName/bin and assign it to the alert. Test your script so it will take the correct SPLUNK_ARG_* from the alert and shows as message in the UI.

Here is the command used:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

and the result in Splunk:
alt text

Hope this helps ...

cheers, MuS

Preview file
1 KB
Reply

klsio
Explorer
‎03-06-2016 05:16 PM

I wanna add LINK in messages. How can i do this?

0 Karma
Reply

MuS
SplunkTrust
SplunkTrust
‎03-06-2016 05:23 PM

So far you could only add text into the message, but just test it and see what happens:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="click this link https://www.google.com";
0 Karma
Reply

93591c
New Member
‎10-20-2015 07:51 PM

Hi,
Thanks so much for solutions, however I have already tried those solution but it didn't helped me. I am trying to do similar thing with alerts. The result of the alert should be shown as pop up on the message bar(bulletin message).

0 Karma
Reply

93591c
New Member
‎11-29-2015 05:41 PM

Hi ,
The given links doesn't solve the purpose.Any new suggestions please..

0 Karma
Reply
Get Updates on the Splunk Community!

Welcome to the Splunk Community!

(view in My Videos) We're so glad you're here! The Splunk Community is place to connect, learn, give back, and ...

Tech Talk | Elevating Digital Service Excellence: The Synergy of Splunk RUM & APM

Elevating Digital Service Excellence: The Synergy of Real User Monitoring and Application Performance ...

Adoption of RUM and APM at Splunk

    Unleash the power of Splunk Observability   Watch Now In this can't miss Tech Talk! The Splunk Growth ...