Other Usage
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How to create custom alert email template on Splunk Cloud?

SplunkExplorer
Contributor
‎06-22-2023 03:48 AM

Hi Splunkers, we are setting a Splunk Cloud environment for a customer and we are working on Trigger Actions for alerts.

We don't need, for now, some particular custom actions: afer alert triggering, sending an email to our SOC is enough. We know that fields in the events/alerts are easily usable thanks to $<field_name> notation, so how to customize the email action is not a problem.
What we don't know is: if we have a custom template we want to use for our emails, with some logos and HTML code, is it possible simply put it in the message box? I mean, simply put our html code here:

SplunkExplorer_0-1687430799959.png


or we have to follow another way? And which one?

Labels (2)
Labels
0 Karma
Reply

VatsalJagani
SplunkTrust
SplunkTrust
‎06-28-2023 06:01 AM

@SplunkExplorer - The message box here is part of the email and not the full email content, so it's not a complete replacement for the email template.

But you can there whatever you need, most likely even the HTML content will work.

 

But if you want all together a custom email template than you have to write a custom alert action and write your own python code to send email in necessary template.

 

I hope this helps!!! Kindly upvote if it does!!!

Reply
Get Updates on the Splunk Community!

New This Month in Splunk Observability Cloud - Metrics Usage Analytics, Enhanced K8s ...

The latest enhancements across the Splunk Observability portfolio deliver greater flexibility, better data and ...

Alerting Best Practices: How to Create Good Detectors

At their best, detectors and the alerts they trigger notify teams when applications aren’t performing as ...

Discover Powerful New Features in Splunk Cloud Platform: Enhanced Analytics, ...

Hey Splunky people! We are excited to share the latest updates in Splunk Cloud Platform 9.3.2408. In this ...