Dashboards & Visualizations
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Alert trigger condition token

ryhluc01
Communicator
‎01-04-2019 11:09 AM

Is there a token for trigger conditions? The trigger condition option within the alert only tells you the type (i.e numbered or custom) of condition but not the content of the condition.

0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

ryhluc01
Communicator
‎01-14-2019 08:27 AM

I was not able to find a token for this purpose. I ended up just manually typing in my condition instead

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

ryhluc01
Communicator
‎01-14-2019 08:27 AM

I was not able to find a token for this purpose. I ended up just manually typing in my condition instead

0 Karma
Reply
Solved! Jump to solution

niketn
Legend
‎01-04-2019 05:59 PM

@ryhluc01 please elaborate your question for the need of token for the community to assist you better. Can Custom trigger condition help you in any way?

____________________________________________
| makeresults | eval message= "Happy Splunking!!!"
0 Karma
Reply
Solved! Jump to solution

ryhluc01
Communicator
‎01-07-2019 07:00 AM

Thank you, I was essentially looking for a quick way to insert the content for my triggered condition directly into the email without having to manually type it out. I was hoping there was a token to use instead.

We have tokens for all sorts of things but I have not found one that will grab the content of the alert trigger.

0 Karma
Reply
Get Updates on the Splunk Community!

Splunk Enterprise Security 8.x: The Essential Upgrade for Threat Detection, ...

 Prepare to elevate your security operations with the powerful upgrade to Splunk Enterprise Security 8.x! This ...

Get Early Access to AI Playbook Authoring: Apply for the Alpha Private Preview ...

Passionate about security automation? Apply now to our AI Playbook Authoring Alpha private preview ...

Reduce and Transform Your Firewall Data with Splunk Data Management

Managing high-volume firewall data has always been a challenge. Noisy events and verbose traffic logs often ...