Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Can I email a licensing alert before it becomes a violation

BobM
Builder
‎07-07-2011 02:01 AM

With the latest versions of splunk we have licensing alerts that warn you are approaching a licensing limit and advising you to correct it before midnight but you need to be logged on to see them. Is there a way of making these alerts email me so I have a chance to do this before I get the violation?

I have seen plenty of searches for violations and have seen a search in the Deployment Monitor app for throughput volumes per pool but none that can compare this with the current pool size and alert if it is approaching or over.

Reply

hartfoml
Motivator
‎09-23-2011 07:22 AM

I have the Search code you need here.
link text

I am still waiting for one peace of help on this.

Read my post to get the code

0 Karma
Reply

BobM
Builder
‎12-14-2011 05:50 AM

Thanks but it isn't quite what I wanted.

Your search finds data indexed for the day but doesn't compare this to the license pools. I want something dynamic I can put on multiple servers without having to check which pool they are in and what size it is.

PS I answered the date problem.

0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In December, the Splunk Threat Research Team had 1 release of new security content via the Enterprise Security ...

Why am I not seeing the finding in Splunk Enterprise Security Analyst Queue?

(This is the first of a series of 2 blogs). Splunk Enterprise Security is a fantastic tool that offers robust ...

Index This | What are the 12 Days of Splunk-mas?

December 2024 Edition Hayyy Splunk Education Enthusiasts and the Eternally Curious!  We’re back with another ...