Splunk Enterprise
×

Are you a member of the Splunk Community?

Sign in or Register with your Splunk account to get your questions answered, access valuable resources and connect with experts!
cancel
Turn on suggestions
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Ask a Question

Getting 502 authentication error while using sendemail command

santosh94
Loves-to-Learn
‎09-21-2023 06:46 AM

Hello

I am trying to test the functionality of sending an email that will be sent because of an alert. For that, first I tried to send an email using the sendemail command. I used the free subscription of Brevo to get an accessible SMTP server to send an email. Then I tried configuring the email settings in my Splunk Enterprise. Below are the SS of my email settings

santosh94_1-1695303183660.png

For the password, I am using the MasterKey provided in the Brevo for my SMPT

santosh94_4-1695303350901.png

 

For the rest of the settings, I kept them as the default

santosh94_3-1695303305459.png

 

I am trying to send the data to a dummy email in Mailinator. Below is my searched SPL with the error.

santosh94_5-1695303601482.png

It is giving me an error for the email set as Send Email as user(Splunk) which I kept as default. I tried using my personal Gmail ID as well but got the same error for that ID.

Can anyone please help me on how to debug or resolve this issue.

0 Karma
Reply

isoutamo
SplunkTrust
SplunkTrust
‎11-03-2023 02:09 AM

Hi

I think that currently there isn't any real email smtp server which don't want to use TLS and other authentication? So you must enable TLS and use smtp server which is supporting it.

Here is instructions how to use your personal Gmail account with splunk

https://community.splunk.com/t5/Alerting/Unable-to-send-test-email-from-Splunk/m-p/667242/highlight/...

r. Ismo

0 Karma
Reply
Career Survey
First 500 qualified respondents will receive a $20 gift card! Tell us about your professional Splunk journey.
Take the Survey
Register for .conf25!
Get Updates on the Splunk Community!

Splunk + ThousandEyes: Correlate frontend, app, and network data to troubleshoot ...

Are you tired of troubleshooting delays caused by siloed frontend, application, and network data? We've got a ...

Maximizing the Value of Splunk ES 8.x

Splunk Enterprise Security (ES) continues to be a leader in the Gartner Magic Quadrant, reflecting its pivotal ...

Operationalizing TDIR: Building a More Resilient, Scalable SOC

Optimizing SOC workflows with a unified, risk-based approach to Threat Detection, Investigation, and Response ...
Top