All Apps and Add-ons
×
Are you a member of the Splunk Community?
Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
- Find Answers
- :
- Apps & Add-ons
- :
- All Apps and Add-ons
- :
- Splunk - Add-on builder - cant execute webhooks
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark Topic
- Subscribe to Topic
- Mute Topic
- Printer Friendly Page
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
jtlittle
Path Finder
03-07-2018
08:57 PM
anyone know why I cant execute filesystem commands in the app builder with python and slack web hooks?
https://splunkbase.splunk.com/app/2962/
user log 1:
2018-03-07 18:34:42,033 ERROR pid=24690 tid=MainThread file=cim_actions.py:message:271 | sendmodaction - signature="Error: 'module' object has no attribute 'process_event'. Please double check spelling and also verify that a compatible version of Splunk_SA_CIM is installed." action_name="test_alert" search_name="test_arf" sid="1520447680.116" rid="0" app="TA-fancydudeapp" user="admin" action_mode="adhoc" action_status="failure"
log 2:
The os module/method can be used to execute filesystem commands.
1 Solution
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
starcher
Influencer
03-08-2018
08:46 AM
Make sure for every gui parameter you have a line in the default alert_actions.conf
[test_alert]
param.process_event =
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
jtlittle
Path Finder
03-08-2018
09:55 AM
ok so the add-on builder does not do this for you?
support has me using this
https://splunkbase.splunk.com/app/2962/
I can check the alert_actions.conf
I think ill need to SSH to it and use nano cause I don't recall that ability in the app.
thanks for your recomendation ill try that.
-Jon
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
starcher
Influencer
03-08-2018
08:46 AM
Make sure for every gui parameter you have a line in the default alert_actions.conf
[test_alert]
param.process_event =
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
jtlittle
Path Finder
03-13-2018
03:52 PM
I tired this :
param.process_event="red_alert"
this is set as the alert action or the app name?
- Mark as New
- Bookmark Message
- Subscribe to Message
- Mute Message
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
dijikul
Communicator
06-01-2020
01:57 PM
Can you expand on this? I'm encountering the same issue and adding the process_event parameter does nothing..
Get Updates on the Splunk Community!
Splunk App for Anomaly Detection End of Life Announcment
Q: What is happening to the Splunk App for Anomaly Detection?A: Splunk is officially announcing the ...
Aligning Observability Costs with Business Value: Practical Strategies
Join us for an engaging Tech Talk on Aligning Observability Costs with Business Value: Practical ...
Mastering Data Pipelines: Unlocking Value with Splunk
In today's AI-driven world, organizations must balance the challenges of managing the explosion of data with ...
