splunkbase.splunk.com/app/3375/ has been archived. This one will do what you need. It's easy to setup https://splunkbase.splunk.com/app/4787 - It creates O365 Cards. You can set different Icons and colors for different alerts. Provides an alert action to easily send Office 365 Cards to a Microsoft Teams channel using the Incoming Webhook Connector in Teams. Easily send beautiful alerts with customizable text or search data included with the Card. (copied from splunkbase) https://www.groundsecurity.com/splunk-app-microsoft-teams-alert-cards/ So far, works everytime. I have not figured out how to create the "alert" notification where the little channel lights up, but the cards do show up in the teams channel.
... View more