Alerting
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

Why can't I send emails via alerting?

simon00
Loves-to-Learn Lots
‎07-26-2022 11:43 PM

Hello, I was trying to setup Alerting via emails and it wouldn't work. Alert for sure gets triggered, because other alert_action works (Add to triggered alerts) but the email one didn't.
In "var\log\splunk\python.log" I found out that for every trigger there is  error log
Ex.:

2022-07-27 08:30:04,382 +0200 ERROR sendemail:1610 - [HTTP 404] https://127.0.0.1:8089/servicesNS/admin/search/alerts/alert_actions/email?output_mode=json
Traceback (most recent call last):
  File "C:\Program Files\Splunk\etc\apps\search\bin\sendemail.py", line 1603, in <module>
    results = sendEmail(results, settings, keywords, argvals)
  File "C:\Program Files\Splunk\etc\apps\search\bin\sendemail.py", line 193, in sendEmail
    responseHeaders, responseBody = simpleRequest(uri, method='GET', getargs={'output_mode':'json'}, sessionKey=sessionKey)
  File "C:\Program Files\Splunk\Python-3.7\lib\site-packages\splunk\rest\__init__.py", line 583, in simpleRequest
    raise splunk.ResourceNotFound(uri)


I tried "| sendemail..." and it generates the same error there.
What is supposed to be in the endpoint and how do I fix it?

Labels (2)
Labels
0 Karma
Reply

renjith_nair
Legend
‎07-28-2022 04:06 AM

It's worth to check your email server settings and make sure they are valid servers 

Server settings  » Email settings

https://docs.splunk.com/Documentation/Splunk/9.0.0/Alert/Emailnotification

---
What goes around comes around. If it helps, hit it with Karma 🙂
0 Karma
Reply

simon00
Loves-to-Learn Lots
‎07-28-2022 05:45 AM

I am confident with my email server settings. I made(edited one I downloaded) custom alert action that consumes those settings and sends emails correctly. This is just workaround though and I am still working on the fix.

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Network to App: Observability Unlocked [May & June Series]

In today’s digital landscape, your environment is no longer confined to the data center. It spans complex ...

SPL2 Deep Dives, AppDynamics Integrations, SAML Made Simple and Much More on Splunk ...

Splunk Lantern is Splunk’s customer success center that provides practical guidance from Splunk experts on key ...

[Puzzles] Solve, Learn, Repeat: Matching cron expressions

This puzzle (first published here) is based on matching timestamps to cron expressions.All the timestamps ...