Alerting

SENS STG Splunk new alerts unable to send emails

anil1432
Explorer

We created new STG Splunk Alerts and enabled them starting July 27. The strange thing is that they cannot send emails to prj-sens-test@mail.rakuten.com and MS teams email 581e7bfc.OFFICERAKUTEN.onmicrosoft.com@apac.teams.ms for any new alert that happens.

 

 

 

Since we migrated to a new system, we cloned our old STG Splunk Alerts and then updated the name and also the sourcetypes for the new STG Splunk Alerts. Everything else, schedule, email recipient, subject and email message are the same. We have deleted the old STG Splunk Alerts. Our last email from STG Splunk Alert was on July 28, which was from the old Splunk Alert.

 

 

 

We are wondering why it suddenly stopped sending emails. May I ask if you have any ideas? 

 

This is only an issue in STG Splunk. New alerts in PRD Splunk are not  working properly.

 

 

 

Our new alerts are here https://stg-asplunksrch101z.stg.jp.local/en-US/app/sens/alerts

 

 

 

This is for STG splunk with the following details:

 

User name: user_sens

 

Splunk host: https://stg-asplunksrch101z.stg.jp.local/

 

Group name: Ichiba Business Expansion Group

 

App team name: ibe

 

Service ID: 1013

Labels (1)
0 Karma
Get Updates on the Splunk Community!

Improve Your Security Posture

Watch NowImprove Your Security PostureCustomers are at the center of everything we do at Splunk and security ...

Maximize the Value from Microsoft Defender with Splunk

 Watch NowJoin Splunk and Sens Consulting for this Security Edition Tech TalkWho should attend:  Security ...

This Week's Community Digest - Splunk Community Happenings [6.27.22]

Get the latest news and updates from the Splunk Community here! News From Splunk Answers ✍️ Splunk Answers is ...