Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Email notifications failing for Splunk ES alerts

kkrises
Path Finder
‎02-01-2022 09:42 AM

Hello all, we're configuring Splunk Enterprise security app within our environment, while testing alerts  the alert actions for sending email notifications are not working.

Checked the internal error logs and observed the below. Any idea what is causing this error?

ERROR:root:(501, b'Syntax error, parameters in command "mail FROM:<internal server> size=9571" unrecognized or missing'
ERROR ScriptRunner - stderr from '/opt/splunk/bin/python3.7 /opt/splunk/etc/apps/search/bin/sendemail.py

Thank you.

Labels (1)
Labels
0 Karma
Reply

VatsalJagani
Super Champion
‎06-28-2022 08:52 PM

@kkrises - I think you need to setup the email server configuration - https://docs.splunk.com/Documentation/Splunk/latest/Alert/Emailnotification

 

I hope this helps!!!

Reply

kkrises
Path Finder
‎02-04-2022 10:06 PM

Found the issue, thanks

0 Karma
Reply

kkrises
Path Finder
‎02-02-2022 09:32 AM

Any help?

0 Karma
Reply
Get Updates on the Splunk Community!

Tips & Tricks When Using Ingest Actions

Tune in to learn about:Large scale architecture when using Ingest ActionsRegEx performance considerations ...

Announcing Our Splunk MVPs

We are excited to announce the first cohort of the Splunk MVP program. Splunk MVPs are passionate members of ...

Dashboard Studio Challenge - Learn New Tricks, Showcase Your Skills, and Win Prizes!

Reimagine what you can do with your dashboards. Dashboard Studio is Splunk’s newest dashboard builder to ...