All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question

How to push Splunk alerts into Service now

gajananh999
Contributor
‎07-18-2014 09:27 AM

Hello Everyone,

We have some set some splunk alert and we want to push these alert into the Service Now i have gone through couple google links on splunk forum [http://answers.splunk.com/answers/47086/service-now-ticket-generation-via-splunk-alerts] there are two way to do this.

1) when get the alert run script and create a ticket in service now

2) get that alert as a email and then create a ticket in service now.

Is there any other way where we can directly create a ticket in service now using any application or any other way?

Thanks

Gajanan Hiroji

0 Karma
Reply

rsennett_splunk
Splunk Employee
Splunk Employee
‎08-11-2014 07:21 PM

It sounds like you're talking about the older version of the app.

You might want to check the current Splunk App for ServiceNow

http://apps.splunk.com/app/1770/

This is a certified integration between Splunk and ServiceNow

This version is certified for the following ServiceNow releases: Eureka, Dublin and Calgary
The application includes the "Update Sets" certified by ServiceNow
Incidents are written to a temporary staging table prior to incident creation
Scripted inputs support change, incident, problem, CMDB and event integration
Cross-Launch functionality now supports linking to ServiceNow Knowledge Base articles

With Splunk... the answer is always "YES!". It just might require more regex than you're prepared for!
0 Karma
Reply

BP9906
Builder
‎08-11-2014 07:10 PM

Well the Splunk App for ServiceNow is doing a json call to open an Incident. Why cant you do the same thing in your other application?

0 Karma
Reply

gajananh999
Contributor
‎07-21-2014 03:43 AM

Can anybody help me on this?

0 Karma
Reply
Got questions? Get answers!

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Meet up IRL or virtually!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Get Updates on the Splunk Community!

Index This | What travels the world but is also stuck in place?

April 2026 Edition  Hayyy Splunk Education Enthusiasts and the Eternally Curious!   We’re back with this ...

Discover New Use Cases: Unlock Greater Value from Your Existing Splunk Data

Realizing the full potential of your Splunk investment requires more than just understanding current usage; it ...

Continue Your Journey: Join Session 2 of the Data Management and Federation Bootcamp ...

As data volumes continue to grow and environments become more distributed, managing and optimizing data ...