Solved: How to modify the "View Results in Splunk" link fr...

pattokt · ‎02-11-2016

We need to change the hostname and port that the "View results in Splunk" link auto populates. Where is the proper place to change this setting in the config files?

somesoni2 · ‎02-11-2016

The configuration file that you're looking for is alert_action.conf and attribute name is hostname.
http://docs.splunk.com/Documentation/Splunk/latest/Admin/Alertactionsconf

hostname = [protocol]<host>[:<port>]
* Sets the hostname used in the web link (url) sent in alerts.
* This value accepts two forms.
  * hostname
       examples: splunkserver, splunkserver.example.com
  * protocol://hostname:port
       examples: http://splunkserver:8000, https://splunkserver.example.com:443

View solution in original post

duartet · ‎09-18-2018

You can also go to Settings > Server Settings > Email settings
and change "Link hostname" to the url you want.

somesoni2 · ‎02-11-2016

The configuration file that you're looking for is alert_action.conf and attribute name is hostname.
http://docs.splunk.com/Documentation/Splunk/latest/Admin/Alertactionsconf

hostname = [protocol]<host>[:<port>]
* Sets the hostname used in the web link (url) sent in alerts.
* This value accepts two forms.
  * hostname
       examples: splunkserver, splunkserver.example.com
  * protocol://hostname:port
       examples: http://splunkserver:8000, https://splunkserver.example.com:443

dvg06 · ‎01-06-2017

thank you.

How to modify the "View Results in Splunk" link from Scheduled Reports

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms