I'm pretty new to Splunk ES, and have a pretty basic question. How do I set up an adaptive response for every new notable event to send an email to a dlist?
I see the option to add an adaptive response/email to each correlation search, but I am trying to configure it in one place to have an email sent for any new notable event that links back to the alert on the Incident Review screen
Any guidance is appreciated. Thanks.
... View more