Reporting
×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Getting splunk to accept email alerts from other systems

flytbonesteak
New Member
‎11-04-2010 03:36 PM

I have a system that only outputs email alerts - no logging. Is there a way to configure splunk to accept these emails and index the data? Even if it is only to read the subject line, since it has all of the information I need to make decisions. Thanks!

Tags (1)
0 Karma
Reply

bigtyma
Communicator
‎03-26-2013 12:54 PM

I am interested if anyone is doing this presently? I have a huge number of alerts being addressed over Email and need to find a solution to retain and present these.

Presently alerts are being received by send mail and processed with a perl script.

0 Karma
Reply

ziegfried
Influencer
‎11-04-2010 03:47 PM

One option that comes to mind is to use the IMAP app for Splunk:

http://splunkbase.splunk.com/apps/All/4.x/app:Splunk+for+IMAP

It allows you to download emails from an IMAP account and index those in Splunk.

Reply

Simeon
Splunk Employee
Splunk Employee
‎11-04-2010 04:16 PM

IMAP app would be the ideal thing to install.

0 Karma
Reply
Get Updates on the Splunk Community!

[Puzzles] Solve, Learn, Repeat: Dynamic formatting from XML events

This challenge was first posted on Slack #puzzles channelFor a previous puzzle, I needed a set of fixed-length ...

Enter the Agentic Era with Splunk AI Assistant for SPL 1.4

  🚀 Your data just got a serious AI upgrade — are you ready? Say hello to the Agentic Era with the ...

Stronger Security with Federated Search for S3, GCP SQL & Australian Threat ...

Splunk Lantern is a Splunk customer success center that provides advice from Splunk experts on valuable data ...