All Apps and Add-ons
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Multiple Opsgenie integrations in same Splunk

rensvanleeuwen
New Member
‎02-11-2020 07:41 AM

Hello,

we'd like to have multiple Opsgenie integrations in the same Splunk instance. The current integration only allows for a single installation and you can therefore only set a single API key. It also comes with a predefined name for the integration.

The use case that we have, is that we need to send alerts to different organisations in Opsgenie. We'd like an ability to differentiate, so when a user creates an alert, he/she can select from different Opsgenie integrations that then end up in one or more Opsgenie accounts.

Thanks,

Rens,Hello,

currently the Splunk/Opsgenie integration app can only be installed once. It therefore also only allows a single API key to be provided, and it comes with a predefined name.

We are looking for ways to have multiple Opsgenie integrations, that each can have a different API key and a different name. This would make it easier for people that create alerts to select a preconfigured Opsgenie integration that ends up on a different account.

Is the code for the Opsgenie integration open source? In other words: can we open a PR that would include this functionality?

Thanks,

Rens van Leeuwen

0 Karma
Reply

burwell
SplunkTrust
SplunkTrust
‎07-14-2021 02:39 PM

@rensvanleeuwen Hello. Did you ever find a solution for this problem?

0 Karma
Reply

rensvanleeuwen
New Member
‎09-17-2021 10:41 AM

Hello @burwell ,

I forgot about this message as it was sent during my holidays. Sorry for the delay.

We worked around this problem by doing the routing on the side of OpsGenie instead. It has been a while and I do not have access to the systems anymore, but I believe we used an OpsGenie → OpsGenie forwarder based on the contents of the payload.

Rens

0 Karma
Reply
Get Updates on the Splunk Community!

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...

Accelerating Observability as Code with the Splunk AI Assistant

We’ve seen in previous posts what Observability as Code (OaC) is and how it’s now essential for managing ...

Integrating Splunk Search API and Quarto to Create Reproducible Investigation ...

 Splunk is More Than Just the Web Console For Digital Forensics and Incident Response (DFIR) practitioners, ...