Splunk Enterprise Security
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk App for Enterprise Security: How to add the urgency of notable events in the email subject line?

ssuresh
Explorer
‎04-22-2015 12:57 AM

Dear All,

We have to include the urgency of the event in the Splunk App for Enterprise Security notable events. Could anybody help me out which variable I need to add in the subject line?

$alert.severity$ is taking the severity level. it's not idle variable we can use it.

Thanks,

Sunil

0 Karma
Reply

mparks11
Path Finder
‎08-31-2016 04:00 PM 
$urgency$

This worked for me in the Title of the Notable Event (in the Correlation Search), and should work in the Email Subject as well, I'd tend to believe.

0 Karma
Reply
Get Updates on the Splunk Community!

Exciting News: The AppDynamics Community Joins Splunk!

Hello Splunkers,   I’d like to introduce myself—I’m Ryan, the former AppDynamics Community Manager, and I’m ...

Buttercup Games: Further Dashboarding Techniques (Part 3)

This series of blogs assumes you have already completed the Splunk Enterprise Search Tutorial as it uses the ...

Digital Resilience Assessment Launch | How prepared are you for disruption?

Disruption is inevitable. The question is – how prepared are you to handle it? In today’s fast-moving digital ...