Hi,
I have 2 Splunk servers with the same alert on both of them.
One is triggering the alert and the other one is not.
Even by configuring the most basic alert search :
|noop|stats count|eval count = count + 1
which returns 1 line with count 1
"Add to triggered alerts" is configured
alert is running every minute with cron.
number of results is greater than 0
One of them triggers and the other won't even though they are the same, so I think that there is something else outside the alert configuration.
What can I verify?
Thanks.
... View more