Alerting

How can I show/display alerts on the Messages tab as bulletin messages at the top of Splunk Web?

New Member

Hi,

I am trying to show/display the results of the Alerts created on the Messages tab. (Some kind of notification on the Messages tab of the UI)
I am a newbie to Splunk (using Splunk 6.2), hence requesting for the solution.

0 Karma

SplunkTrust
SplunkTrust

Hi 93591c,

if you follow @somesoni2 's first link you will find this command:

curl -k -u admin:changeme https://127.0.0.1:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

Learn about custom alert scripts here http://docs.splunk.com/Documentation/Splunk/6.3.1511/AdvancedDev/ModAlertsIntro and here http://docs.splunk.com/Documentation/Splunk/6.3.1/Alert/Configuringscriptedalerts . Add your custom script in $SPLUNK_HOME/etc/apps/YourAppName/bin and assign it to the alert. Test your script so it will take the correct SPLUNK_ARG_* from the alert and shows as message in the UI.

Here is the command used:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

and the result in Splunk:
alt text

Hope this helps ...

cheers, MuS

Explorer

I wanna add LINK in messages. How can i do this?

0 Karma

SplunkTrust
SplunkTrust

So far you could only add text into the message, but just test it and see what happens:

curl -k -u admin:admin123 https://127.0.0.1:8089/services/messages -d severity="info" -d name=message -d value="click this link https://www.google.com";
0 Karma

New Member

Hi,
Thanks so much for solutions, however I have already tried those solution but it didn't helped me. I am trying to do similar thing with alerts. The result of the alert should be shown as pop up on the message bar(bulletin message).

0 Karma

Revered Legend
0 Karma

New Member

Hi ,
The given links doesn't solve the purpose.Any new suggestions please..

0 Karma
Don’t Miss Global Splunk
User Groups Week!

Free LIVE events worldwide 2/8-2/12
Connect, learn, and collect rad prizes
and swag!