Solved: Splunk Cloud Integration with Snow for raising tic...

dhivyamu · ‎11-20-2019

I'm trying to create incidents from Splunk cloud Alerts. what I read from the docs is we need install an add-on in ServiceNow as well. I did that and tried to configure it. The configuration page asks for Splunk API base URL. What should be provided for that ? I tried giving my cloud address which is something like "XX-qa.splunkcloud.com", it is not working.

adonio · ‎11-20-2019

you will have to contact Splunk Cloud and ask them to open the API.
if you do not hold the entitlement in your organization, you will have to check internally who can submit such a request

View solution in original post

dhivyamu · ‎11-27-2019

More details, It may help someone -

port 8089 to be opened for the IP address of the ServiceNow which has to be integrated with Splunk

Base AP URL is :8089. If you use Splunk cloud, it will be your idm URL:8089

XX.splunkcloud.com:8089 or idm-XX.splunkcloud.com:8089

adonio · ‎11-20-2019

you will have to contact Splunk Cloud and ask them to open the API.
if you do not hold the entitlement in your organization, you will have to check internally who can submit such a request

dhivyamu · ‎11-21-2019

I have the entitlement. Which API should I ask them to open?

Splunk Cloud Integration with Snow for raising tickets

Announcing Scheduled Export GA for Dashboard Studio

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics GA in US-AWS!