Splunk Search
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

Splunk integration with OpsGenie to send alert- Is OpsGenie not supported?

shashank_24
Path Finder
‎11-24-2021 05:05 PM

Hi, I am sure this question must have asked multiple times and infact I've come across multiple posts but I am still unanswered.

So I am a Splunk developer/analyst who is looking to integrate my Splunk Enterprise with OpsGenie to send alert notifications but when I look at the integration here https://support.atlassian.com/opsgenie/docs/integrate-opsgenie-with-splunk/ it says to install an app in Splunk base and when I go to that app https://splunkbase.splunk.com/app/3759/ it says "This app is NOT supported by Splunk. Please read about what that means for you here."

What does this mean? As an Admin we can see the app when we browse in Splunk. Does it mean if we install it it won't break or could break other things?

Let me know if anyone has done this integration on their on-prem Splunk enterprise architecture. Any input is appreciated.

Labels (3)
Labels
0 Karma
Reply

scelikok
SplunkTrust
SplunkTrust
‎11-25-2021 09:12 AM

Hi @shashank_24,

API endpoints are hardcoded into python code. There is two different OpsGenie app in Splunkbase for US and EU regions. If your OpsGenie account is in EU region, you should use below version.

Opsgenie(EU) for Splunk

https://splunkbase.splunk.com/app/5144/

 

If this reply helps you an upvote is appreciated.
Reply

scelikok
SplunkTrust
SplunkTrust
‎11-24-2021 11:05 PM

Hi @shashank_24,

"This app is NOT supported by Splunk" means this App or TA is not maintained by Splunk. This does not mean that it will break your system if you check your Splunk Enterrpise version is in the Compatibility list.

If you have any problem you need to check Splunk Community pages or try to contact with the app developer.

We have done this integration using this app, on a customers on-prem Splunk.

If this reply helps you an upvote is appreciated.
0 Karma
Reply

shashank_24
Path Finder
‎11-25-2021 06:12 AM

Hi @scelikok Thanks for your quick response.

We have just integrated our test environment with OpsGenie. We tested it and not getting any alerts in OpsGenie.

As per the instruction it only takes API key in Splunk to send the data. BUT my question is how will Splunk knows where to send the data to? I mean there is no domain/hostname/port etc.

I am using this link to follow the steps. https://support.atlassian.com/opsgenie/docs/integrate-opsgenie-with-splunk/

0 Karma
Reply

payal23
Path Finder
‎01-20-2022 10:07 PM

@shashank_24  I am also facing the similar issue. Are you able to integrate Opsgenie and Splunk?

0 Karma
Reply

prathasj
Loves-to-Learn
‎06-26-2022 06:17 PM

I am also facing similar issue , has anyone able to integrate Opsgenie with Splunk

Tags (1)
0 Karma
Reply

tywhite
Explorer
‎02-22-2023 12:31 PM

We're using Opsgenie with Splunk
https://splunkbase.splunk.com/app/3759

Splunk Enterprise

Version:8.2.9

Installed the app and then added the API (from the Splunk integration in Opsgenie) in the Set up.

Have you reviewed the Opsgenie logs to confirm whether or not the alert was received from Splunk?

It may have been received, but failed to create an alert for some other reason.

 

0 Karma
Reply
Get Updates on the Splunk Community!

Enterprise Security Content Update (ESCU) | New Releases

In the last month, the Splunk Threat Research Team (STRT) has had 2 releases of new security content via the ...

Announcing the 1st Round Champion’s Tribute Winners of the Great Resilience Quest

We are happy to announce the 20 lucky questers who are selected to be the first round of Champion's Tribute ...

We’ve Got Education Validation!

Are you feeling it? All the career-boosting benefits of up-skilling with Splunk? It’s not just a feeling, it's ...