Use splunk commands in splunk alert shell script

sharafat1187 · ‎02-20-2018

Hello,

I am working on writing a shell script which will get executed after an splunk alert.
after processing the alert results in the shell script, i want to use splunk's "sendemail" command in the shell script.
Can somebody tell me is it possible to use splunk commands in the shell script?
if not how can i send email from that shell script?
I do not have any control on the splunk server as it is owned by devops team.

valiquet · ‎03-09-2018

Why don't you process the results within SPlunk with a scheduled alert? You should be able to send an email.

Also with ./bin/splunk you can run a search with |sendmail cmd

Otherwise, I would setup a savedsearch that send an email every time it runs, then run it from shell. Otherwise, use OS deamon

Use splunk commands in splunk alert shell script

Help us learn about how Splunk has impacted your career by taking the 2021 Splunk Career Survey.Earn $50 in Amazon cash! Full Details! >

Help us learn about how Splunk has
impacted your career by taking the 2021 Splunk Career Survey.

Earn $50 in Amazon cash!

Full Details! >