...ettings>searches,report and alerts>new alert. Then create the alert from the context of my app, I am now able to see the alertaction but when it runs I get the following error
ERROR S...
Hi, is there an alertaction to save the results of the search directly to a specified, existing index?
I already tried the "Log event" alertaction, but in the "Event" field that has to be s...
Hi,
Currently I am creating a Custom Alertaction script as per documentation http://docs.splunk.com/Documentation/Splunk/6.5.2/AdvancedDev/CustomAlertScript but I would like to create Shell s...
...ut instead of them calling through to IT desk. We don't want a snow alert to trigger every time they show up in the splunk seach however, instead if they have had an alertcreated in the last 4 h...
Hi, I tried to create a custom alertaction that operates a script, but I didn't understand how to send parameters from the search results to the script.
For example: a script that checks Windows v...
..._main__":
test()
I can execute this scripts python test.py in my /home directory,
and I can create user.
so I made custom alertaction.
I made an alert and select this custom action, b...
Hi all,
I am using the custom alertaction with the Python script to SSH to our Fortigate firewalls and restart the URL filter daemon using one specific Fortigate CLI command. Initially I did n...
I'm trying to create a custom alertaction, but I'm seeing an error in the splunkd.log .
WARN sendmodalert - action=myapp - Unable to find alertaction script for action="myapp" in app="m...
I created savedsearches.conf file to create a splunk alert and restart the splunk service, but I still can't see the new alert in the UI, I am using the following configuration:
Thanks in advance!