Reporting
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

receive emails from thirdpart app as event in splunk

pouriajalilian1
New Member
‎08-13-2019 04:08 AM

i have a server that the only way it can alert on events is to send emails to an external thirdparty app ,like splunk.so i want to monitor whenever it receives emails and create alerts,dashboards based on that events.is it possible??please give me clear advice on that .

Tags (2)
0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎08-13-2019 05:18 AM

Splunk cannot receive email directly. It can, however, access IMAP mailboxes using the IMAP Mailbox app (https://splunkbase.splunk.com/app/1739/). I once wrote a scripted input to access Office 365 mailboxes using an API that is no longer supported. So there are options. Post specific questions and we may be able to help more.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

pouriajalilian1
New Member
‎08-13-2019 06:53 AM

[IMAP Configuration]
debug = 0
deleteWhenDone = 0
disabled = 0
fullHeaders = 1
includeBody = 1
noCache = 0
port = 587
server = mail.test.com
useSSL = 1
user =username@test.com
password =**********
mimeTypes = text/plain
folders = all
imapSearch = UNDELETED
deleteWhenDone = False
noCache = False
splunkuser = admin
splunkpassword =*****
timeout = 10
---------i wrote something like this,but it didnt work.
besides,i enabled windows script on inputs.conf and disabled nix one as instructed in the manual .help me please

0 Karma
Reply

richgalloway
SplunkTrust
SplunkTrust
‎08-13-2019 10:22 AM

I don't know enough about the IMAP app to offer detailed help. You may want to post a new question.

---
If this reply helps you, Karma would be appreciated.
0 Karma
Reply

pouriajalilian1
New Member
‎08-14-2019 11:32 AM

thank you my friend

0 Karma
Reply

pouriajalilian1
New Member
‎08-13-2019 07:09 AM

does Streams events from from a mail server. is what i have to configure?? in this way,i couldnt set protocol filed .

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Get Updates on the Splunk Community!

Tech Talk Recap | Mastering Threat Hunting

Mastering Threat HuntingDive into the world of threat hunting, exploring the key differences between ...

Observability for AI Applications: Troubleshooting Latency

If you’re working with proprietary company data, you’re probably going to have a locally hosted LLM or many ...

Splunk AI Assistant for SPL vs. ChatGPT: Which One is Better?

In the age of AI, every tool promises to make our lives easier. From summarizing content to writing code, ...