Monitoring Splunk
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Add email notification to correlation search in Enterprise Security

SplunkSanc
Observer
‎11-16-2020 09:14 AM

Hello,

I'm trying to add an email alert as an Adaptive Response Action to a built-in correlation search in Enterprise security, when I add it, it gives me an error.

 image.png

 

 

 

 

 

 

 

 

Any help would be appreciated.

Thank You

Labels (1)
Labels
0 Karma
Reply

vikramyadav
Contributor
‎11-21-2020 10:45 PM

Hi, @SplunkSanc simply try to save your correlation search with a sorter name it would solve this error.

--------------------------------------------------------

If this helps your like will be appreciated😊

0 Karma
Reply

nwuest
Path Finder
‎11-21-2020 09:19 PM

Hi @SplunkSanc,

Which built-in correlation search are you trying to add an email alert to?
(I can try to replicate it on my end)

Also, which version of Splunk Enterprise are you running?


Look forward to hearing from you!

V/R,
nwuest

0 Karma
Reply
Get Updates on the Splunk Community!

Extending Observability Content to Splunk Cloud

Watch Now!   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to leverage ...

More Control Over Your Monitoring Costs with Archived Metrics!

What if there was a way you could keep all the metrics data you need while saving on storage costs?This is now ...

New in Observability Cloud - Explicit Bucket Histograms

Splunk introduces native support for histograms as a metric data type within Observability Cloud with Explicit ...