Re: PagerDuty App for Splunk: Where are the instal...

Cuyose · ‎02-02-2017

There are no associated Installation, configuration or usage details for the PagerDuty App for Splunk.

bmacias84 · ‎02-02-2017

Here is PagerDuty online guide, but step 5 incorrect within the Splunk section. The Integration URL is just the unique Integration Key not the Integration URL that PagerDuty provides. Had the same problem.

https://www.pagerduty.com/docs/guides/splunk-integration-guide/

# this search will show the PagerDuty Alert logs.
index=_internal action=pagerduty source!="/opt/splunk/var/log/splunk/splunkd_ui_access.log" source!="/opt/splunk/var/log/splunk/web_access.log" source!="/opt/splunk/var/log/splunk/remote_searches.log"

frednuffer · ‎05-30-2019

Can I get confirmation that:
Step 5 of the Pagerduty in their integration guide is incorrect. Instead of entering the URL provided by the Pagerduty/Configuration/Services/Splunk Alerts/Splunk, use JUST the integration key from the same screen.

Inside the Splunk alert, I add PagerDuty as the trigger action and include the KEY, not the URL.

Confirmed?

Cuyose · ‎06-02-2017

Are there any considerations for the install in a distributed environment with primary and secondary search heads/clustered indexing? Does this just get installed on the search head? We push our apps via the deployment server.

PagerDuty App for Splunk: Where are the installation and usage instructions for this app?

Splunk Security Content for Threat Detection & Response, Q1 Roundup

Splunk Life | Happy Pride Month!

SplunkTrust | Where Are They Now - Michael Uschmann