Alerting

Setting up an audible alarm with workflow action

gpburgett
Splunk Employee
Splunk Employee

We have installed Splunk in a service control center and have monitoring and alerting set up for several content servers. The alerting and everything works fine, I was just curious about what other custom things we could do with the workflow actions. Here's what I'm thinking:

Would it be possible to set up a workflow action that triggers a popup or maybe even an audible alarm on my workstation(Search Head) when the alert conditions are met?

Our customer is interested in this, and I think other people in similar control/monitoring centers might be interested in this functionality too. It seems like it should be possible, but it will take somebody smarter than me to figure it out. Please give me any ideas you might have about where to get started.

Tags (2)
0 Karma
1 Solution

gpburgett
Splunk Employee
Splunk Employee

I guess I should've looked a little harder before posting:

See:

Audio Alerts on Client Browser. Is it Possible? -by Maverick

blogs/audiblealerts

View solution in original post

0 Karma

tedder
Communicator

While you could do it client-side, the best way might be to fire off a script when conditions are met. In other words, do a saved search that only fires off with your specific condition, and plumb that into something that will play music or fire a beep.

It depends on if you are on linux or windows, what is installed, etc, but it should be easy to do with a simple line of shell/batch. For instance, "start c:\alert.mp3" on Windows or "mpg123 /alert.mp3" on linux. FSVO mpg123 of course!

0 Karma

gpburgett
Splunk Employee
Splunk Employee

I guess I should've looked a little harder before posting:

See:

Audio Alerts on Client Browser. Is it Possible? -by Maverick

blogs/audiblealerts

0 Karma
Get Updates on the Splunk Community!

What's New in Splunk Enterprise 9.4: Features to Power Your Digital Resilience

Hey Splunky People! We are excited to share the latest updates in Splunk Enterprise 9.4. In this release we ...

Take Your Breath Away with Splunk Risk-Based Alerting (RBA)

WATCH NOW!The Splunk Guide to Risk-Based Alerting is here to empower your SOC like never before. Join Haylee ...

SignalFlow: What? Why? How?

What is SignalFlow? Splunk Observability Cloud’s analytics engine, SignalFlow, opens up a world of in-depth ...