The Notification Team is migrating our email service provider. As the rollout progresses, Splunk has enabled the new email service provider for Splunk Cloud IL2, FedRAMP Moderate, and Fedramp High customers which are driven by customer requests from Splunk Ideas.
Background
Customer-configured email-based alerting is a first-class workflow supported by Splunk. We know how vital alerting can be to our customers. We are pleased to announce that Splunk Cloud FedRAMP High customers are also able to send email notifications to themselves for critically configured email-based alerts from the stacks now. Please take a moment to review a summary of the changes being introduced.
Summary of Changes
The email notification will be available for 4 use cases below
- sendemail SPL command
- Saved search
- Emails for backgrounded jobs
- Emails for health reports of the stack
- Emails initiated from within Apps
|
Features
|
Description
|
Customer Impact
|
|
MAIL FROM
|
The MAIL FROM value in the SMTP envelope of emails originating from Splunk Cloud stacks will be mail.splunkcloudfed.com. The From field in these emails will be set to alerts@splunkcloudfed.com
|
No downtime is expected and no action is required.
If you need clarification on any existing network policies on your end, please contact Customer Support so we can work with you to help ensure that you continue receiving email-based alerts.
|
|
Dynamic IP addresses for origin mail server
|
The origin email server is expected to have a dynamic IP address range in the future
|
|
Email size
|
Email size, including body/text/images/attachments, is up to 40MB.
|
