Alerting

still not sending email for alerts

mdmaala
Communicator

hi! I added an alert and I configured it so that it will send an email once the alert triggers, here are the configurations I made:

alert type: real time
expires: 24 hour(s)
Trigger conditions per result

then I set the email address where it is supposed to be sent , set priority to highest and checked the items
which I want to include in the email

I also edited alert_actions.conf and still it is not sending emails

what is the other solution that I can do?

it seems that I ran out of options.

thank you so much.

0 Karma

vinkumar_splunk
Splunk Employee
Splunk Employee

Can you check the internal logs to find out the reason? Look for scheduler source type and splunk_python.

0 Karma

johnquinn
Explorer

I confirmed i can use telnet to successfully send an email from the splunk server with insights for infrastructure running. BUT no alerts are being sent to us and the python.log file is blank.
we have tried various settings within the settings | notifications tab but emails for alerts are not getting to us.

0 Karma

darshini2790
Explorer

@mdmaala Check if you are having SMTP access to send mails. smtp port 25 opening can be required . try to login to splunk server and test by sending mails using telnet .
https://www.wikihow.com/Send-Email-Using-Telnet

kamlesh_vaghela
SplunkTrust
SplunkTrust

@mdmaala

Have you configured Configure email notification for your Splunk instance?

Check: https://docs.splunk.com/Documentation/Splunk/7.2.5/Alert/Emailnotification#Configure_email_notificat...

mdmaala
Communicator

yes I tried to configure it but it still doesn't send an email

0 Karma
Did you miss .conf21 Virtual?

Good news! The event's keynotes and many of its breakout sessions are now available online, and still totally FREE!