Splunk Enterprise
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Solved! Jump to solution

How do I resolve Send Email error - SMTP server?

AishwaryaAlhat
Engager
‎03-30-2023 08:23 PM

Hi all, I'm to trying to set an email alert notification using Splunk enterprise 9.0 but I am getting the following error: 

AishwaryaAlhat_0-1680232219224.png

I checked the error logs and details are below:

AishwaryaAlhat_1-1680232563182.png

Could anyone help me to understand this and guide me in right direction to resolve this error? Thanks.

Regards,

Aish

 

Labels (1)
Labels
0 Karma
Reply
1 Solution
Solved! Jump to solution
Solution

isoutamo
SplunkTrust
SplunkTrust
‎03-31-2023 02:52 AM

Hi

this error message means that your splunk instance has configured to use user which haven't right to send email to your configured smtp-server.

Here is instructions how to configure your splunk to send emails. https://docs.splunk.com/Documentation/Splunk/latest/Alert/Emailnotification

Be sure that your are using smtp-server which allow sending emails from your server. Usually there are some requirements which your client must fulfil before it can send email. You can get those from your SMTP server admin.

r. Ismo

View solution in original post

0 Karma
Reply
Solved! Jump to solution
Solution

isoutamo
SplunkTrust
SplunkTrust
‎03-31-2023 02:52 AM

Hi

this error message means that your splunk instance has configured to use user which haven't right to send email to your configured smtp-server.

Here is instructions how to configure your splunk to send emails. https://docs.splunk.com/Documentation/Splunk/latest/Alert/Emailnotification

Be sure that your are using smtp-server which allow sending emails from your server. Usually there are some requirements which your client must fulfil before it can send email. You can get those from your SMTP server admin.

r. Ismo

0 Karma
Reply
Solved! Jump to solution

AishwaryaAlhat
Engager
‎04-02-2023 04:32 PM

Hi, 

I have configured the instance to SMTP server. Here are the details:

AishwaryaAlhat_0-1680477086604.png

Also, could you please explain in more detail (example) about: "Usually there are some requirements which your client must fulfil before it can send email." 

Thank you.

Regards,

Aish

0 Karma
Reply
Solved! Jump to solution

psecure
Loves-to-Learn
‎02-14-2024 08:17 AM

Hello all,

I have a problem with my configuration smtp.
When I send e-mail I get this error :

2024-02-14 16:44:15,213 +0100 ERROR cli_common:482 - Failed to decrypt value: ***************************=, error: Read custom key data size=30

Someone has an idea?

Tags (1)
0 Karma
Reply
Solved! Jump to solution

mmacielinski
Observer
‎04-04-2024 08:29 AM

This line in $SPLUNK_HOME/lib/python3.7/site-packages/splunk/clilib/cli_common.py was the source of an error when configuration initialization is slow...

 

 if err:
    logger.error(
        'Failed to decrypt value: {}, error: {}'.format(value, err))
    return None
  return out.strip()

 

There is a wallclock message that gets in the middle of the decrypt operation causing it to fail.

Changed code to this, and problem went away.

 

if 'took wallclock_ms' no in err:
    logger.error(
        'Failed to decrypt value: {}, error: {}'.format(value, err))
    return None
  return out.strip()

 

0 Karma
Reply
Get Updates on the Splunk Community!

Archived Metrics Now Available for APAC and EMEA realms

We’re excited to announce the launch of Archived Metrics in Splunk Infrastructure Monitoring for our customers ...

Detecting Remote Code Executions With the Splunk Threat Research Team

WATCH NOWRemote code execution (RCE) vulnerabilities pose a significant risk to organizations. If exploited, ...

Enter the Dashboard Challenge and Watch the .conf24 Global Broadcast!

The Splunk Community Dashboard Challenge is still happening, and it's not too late to enter for the week of ...