Alerting
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

How to send a scheduled report from Splunk to another device location ?

vrmandadi
Builder
‎01-15-2019 06:15 PM

I have a report which runs every 24 hours .i want this report to be sent to another machine each time this report runs.

1)where do I need to write the script?(Search head or Indexer)
2)What is the location of the script that needs to be placed?
3)I tried using the alert actions to run a script but it says the action is deprecated
4)What are the other options for this?

Thanks in advance

0 Karma
Reply

harsmarvania57
Ultra Champion
‎01-16-2019 12:53 AM

Hi,

  1. You need to write script on Search Head (I'll suggest to use custom alert actions for this)
  2. Have a look at Custom Alert Actions documentation, you need to create dedicated add-on for this.
  3. Run a script is deprecated and will be removed in future version of splunk so move to new framework called Custom Alert Actions
  4. I am not aware of any other option because custom alert actions works very good.
0 Karma
Reply
Get Updates on the Splunk Community!

Community Content Calendar, November Edition

Welcome to the November edition of our Community Spotlight! Each month, we dive into the Splunk Community to ...

October Community Champions: A Shoutout to Our Contributors!

As October comes to a close, we want to take a moment to celebrate the people who make the Splunk Community ...

Stay Connected: Your Guide to November Tech Talks, Office Hours, and Webinars!

What are Community Office Hours? Community Office Hours is an interactive 60-minute Zoom series where ...