Hello Splunkers,
https://splunkbase.splunk.com/app/5037/ i am using this add-on to create a ticket in Jira, as an alert action.
But after the set-up giving the JIRA URL and Credentials, it gives an error for this query:
index=_internal sourcetype=splunkd component=sendmodalert
Well, error 5 is "unexpected error" so hard to say what happened without detailed logs.
Did you do as the https://splunkbase.splunk.com/app/5037/#/details says in Troubleshooting section?
yeah i did that. Doing Debug on sendmodalert, gave me 400 logs for 1alert. on checking that, everything looks fine, except these 4 events.
I just wanted to know about command "sendalert", where is this command?
As it shows in logs, "Error is sendalert command". I am unable to locate the python file for this command.
sendalert seems to be a custom splunk command probably using some helper script.
Easiest way to find where it's defined is
find /path/to/the/app -type f -name \*.conf | xargs grep sendalert
M clueless, how to proceed.
Any other way, we can do splunk jira integration?
What I'd try: