Reporting
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

Is there a way to retrieve the messages from the banner at the top of the UI and email me a report on them?

yannK
Splunk Employee
Splunk Employee
‎12-30-2014 11:31 AM

I wanted to have a check of the messages displayed on the top of the UI and email me a report on them, instead of logging in to see them.

Tags (4)
Reply
1 Solution
Solved! Jump to solution
Solution

yannK
Splunk Employee
Splunk Employee
‎12-30-2014 11:34 AM

And I found this search to get them :

| rest /services/messages | table title message severity timeCreated_iso published splunk_server author

Then schedule it with an alert to email me a copy once a while.

PS : If you want to create messages for your users on the fly from the command line

curl -k -u admin:changeme https://localhost:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"

View solution in original post

Reply
Solved! Jump to solution
Solution

yannK
Splunk Employee
Splunk Employee
‎12-30-2014 11:34 AM

And I found this search to get them :

| rest /services/messages | table title message severity timeCreated_iso published splunk_server author

Then schedule it with an alert to email me a copy once a while.

PS : If you want to create messages for your users on the fly from the command line

curl -k -u admin:changeme https://localhost:8089/services/messages -d severity="warn" -d name=message -d value="This is your Splunk Admin, there will be a maintenance of this instance in 10 minutes -> 15:00 , ETA of 30 minutes -> 15:30, for updates contact me at YourFriendlyNeighborhoodAdmin@mydomain.com"
Reply
Solved! Jump to solution

martin_mueller
SplunkTrust
SplunkTrust
‎12-30-2014 09:16 PM

For completeness' sake, you can also add messages through the UI by going to Settings -> User Interface -> Bulletin Messages.

Reply
Get Updates on the Splunk Community!

.conf25 Community Recap

Hello Splunkers, And just like that, .conf25 is in the books! What an incredible few days — full of learning, ...

Splunk App Developers | .conf25 Recap & What’s Next

If you stopped by the Builder Bar at .conf25 this year, thank you! The retro tech beer garden vibes were ...

Congratulations to the 2025-2026 SplunkTrust!

Hello, Splunk Community! We are beyond thrilled to announce our newest group of SplunkTrust members!  The ...