All Apps and Add-ons

Error in creating Service NOW ticket

ab374134
Explorer

Hi Team,

I am trying to create a ticket with SNOWINCIDENTSTREAM command but it is giving me a error stating "Failed to create ticket".

What could be the possible reason for the same?

0 Karma

ab374134
Explorer

Still the issue is there.

It is not able to create any new ticket.

alt text

0 Karma

ansif
Motivator

So your base search has all required arguments for a servicenow ticket?

0 Karma

ansif
Motivator

Please post the search query.

Example:

sourcetype="CPURates" earliest=-5m latest=now
| stats avg(CPU) as CPU last(_time) as time by host
| where CPU>=95 | eval contact_type="email"
| eval ci_identifier=host | eval priority="1"
| eval category="Software" | eval subcategory="database"
| eval short_description="CPU on ". host ." is at ". CPU
| snowincidentstream

For incidents, the required arguments are category, short_description, and contact_type. For events, the required arguments are node, resource, type, and severity.

http://docs.splunk.com/Documentation/AddOns/released/ServiceNow/Usestreamingcommands

0 Karma
Get Updates on the Splunk Community!

Fun with Regular Expression - multiples of nine

Fun with Regular Expression - multiples of nineThis challenge was first posted on Slack #regex channel ...

[Live Demo] Watch SOC transformation in action with the reimagined Splunk Enterprise ...

Overwhelmed SOC? Splunk ES Has Your Back Tool sprawl, alert fatigue, and endless context switching are making ...

What’s New & Next in Splunk SOAR

Security teams today are dealing with more alerts, more tools, and more pressure than ever.  Join us on ...