Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Schedule alert for different time zones

hvoynova
Observer
‎08-04-2020 07:17 AM

Hello,

I have an alert which is scheduled to run at 8 AM every day using a cron expression. It checks events from different site locales.

Since this alert must be scheduled for different regions (EU, APAC, NA, etc.), is it possible to run the alert independently for each time zone? 

(example: daily alerts that run at 8AM to be able to run their checks at 8AM in each market's timezone)

Regards

 

Labels (4)
0 Karma
Reply

aashiqwork
Explorer
‎08-04-2020 09:32 AM

Create a local Splunk user called TZ_London, login as that user and set his Time zone so that Splunk knows how to interpret Timepicker values like Today and Yesterday, etc. by clicking TZ_London -> Settings -> Time zone. Then clone the report so that TZ_London owns it and it runs as him with his Time zone setting. This way Splunk handles Daylight Savings and everything else.

https://community.splunk.com/t5/Alerting/How-to-configure-alert-based-on-other-timezones/td-p/450777

Hope this helps !!!

 

Thanks

 

Reply
Get Updates on the Splunk Community!

.conf24 | Registration Open!

Hello, hello! I come bearing good news: Registration for .conf24 is now open!   conf is Splunk’s rad annual ...

ICYMI - Check out the latest releases of Splunk Edge Processor

Splunk is pleased to announce the latest enhancements to Splunk Edge Processor.  HEC Receiver authorization ...

Introducing the 2024 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...