×

Join the Conversation

Without signing in, you're just watching from the sidelines. Sign in or Register to connect, share, and be part of the Splunk Community.
Ask a Question
tomjb72
New Member
Member since: ‎01-02-2026
‎01-05-2026
Community Statistics
Posts 2
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎01-02-2026
View All

Re: Auto Closing incidents in ServiceNow which are...

by in All Apps and Add-ons
‎01-05-2026 12:41 AM
‎01-05-2026 12:41 AM
Yes, just enterprise v10.0.2 ... View more

Auto Closing incidents in ServiceNow which are gen...

by in All Apps and Add-ons
‎01-02-2026 08:40 AM
‎01-02-2026 08:40 AM
Hi All, I am currently building a Splunk showcase for customers as part of which i've simulated an application failure and latency within the application, i've generated JSON logging as part of this and created alerts off the back of this when the latency & application availability errors are detected in the index.  The alerts are successfully running and generating incidents in a queue in ServiceNow using the Splunk Add-on for ServiceNow.  At the moment i'm having to manually close the incidents when they are raised, but i want to add in a check that auto-closes the Incident in ServiceNow when the conditions are no longer true showing that the issue has now been resolved. Can anyone help provide any insight in the best way to do this? I've worked on Splunk environments before where an incident would auto-close when the Splunk process had stopped on a SH or UF and had now been restarted and is back online, but not at this level. Thanks in advance ... View more
Contact Me
Online Status
Offline
Date Last Visited
‎01-05-2026 12:40 AM