Alerting
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

change the host name for alert trigger

Skins
Path Finder
‎09-11-2017 10:09 PM

I have Splunk sitting on a standalone box with hostname "splunk" I am testing triggering alerts to a third party app.

When the alert triggers it sends the host value "Splunk" to the third party app.

I want to be able to change this field to "splunk.domain.org" so that we can launch back into splunk in context from a link that's presented on the third party app as currently http://splunk when I'd like it to be http://splunk.domain.org...

I've tried setting the splunk hostname and tried a few props.conf settings but haven't been able to succeed as yet.

gratzi

Tags (1)
0 Karma
Reply

yaasirvatham_sp
Splunk Employee
Splunk Employee
‎04-19-2020 09:09 AM

Create etc/system/local/alert_actions.conf

hostname=http://splunk.domain.org

restart Splunk service

Try this, It will work

0 Karma
Reply

woodcock
Esteemed Legend
‎09-11-2017 10:18 PM

All of this is done in server.conf and it varies depending on host OS and other things:

https://docs.splunk.com/Documentation/Splunk/latest/Admin/Serverconf

0 Karma
Reply

Skins
Path Finder
‎09-12-2017 07:27 AM

that was one of the first things we tried - setting the splunk hostname in the GUI adds adds an entry to ..

/etc/system/local/server.conf

[general]
serverName = splunk.domain.org

this did not work it still used the hostname of the server

0 Karma
Reply
Get Updates on the Splunk Community!

Your Guide to Splunk Digital Experience Monitoring

A flawless digital experience isn't just an advantage, it's key to customer loyalty and business success. But ...

Data Management Digest – November 2025

  Welcome to the inaugural edition of Data Management Digest! As your trusted partner in data innovation, the ...

Upcoming Webinar: Unmasking Insider Threats with Slunk Enterprise Security’s UEBA

Join us on Wed, Dec 10. at 10AM PST / 1PM EST for a live webinar and demo with Splunk experts! Discover how ...