cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question
Jithu1717
Loves-to-Learn Lots
Member since: ‎09-10-2020
‎10-20-2020
Community Statistics
Posts 4
Solutions 0
Karma Given 0
Karma Received 0
Member Since ‎09-10-2020
View All

how to add Vertical Scrollbar for a Table cell ins...

by in Splunk Dev
‎10-20-2020 01:21 PM
‎10-20-2020 01:21 PM
how to add Vertical Scrollbar for a table cell inside a pannel , we have vertical scroll bar configured for Pannel  & similarly i want vertical scrollbar configuered for a multivalued cell in table is there any way we can achive this ?     ... View more
Labels

Re: How to create an alert using sendemail to sen...

by in Splunk Enterprise
‎09-15-2020 01:30 PM
‎09-15-2020 01:30 PM
@marycordova  Thank you! This app have been tested already. Using this we are unable to add any csv or pdf attachment to email also the email body is not in a proper format.   ... View more

Re: How to create an alert using sendemail to sen...

by in Splunk Enterprise
‎09-14-2020 12:45 PM
‎09-14-2020 12:45 PM
@yeahnah  Thanks very much for your quick responce! Actully its adding all the values into a single row, we have more number values  to be added while sending attachment to the owners so giving all the values in single row is bit difficult for them to understand  we are expecting the output something like this in attachment :  id AccountName AccountID AccountGroup Policy Policyseverity SLA Status Account Type Remediation_Contact_Email 123 prod 1234 Application S3 - Not encrypted 5 NA   abc123@xyz.com 778 qa 5678 Security VPN Voilation 5 NA   abc123@xyz.com 889 test 9876 cloud EC2 out of memory  5 NA   abc123@xyz.com 243 dev 54321 All   5 Within SLA Non-Prod abc123@xyz.com     ... View more

How to create an alert using sendemail to send on...

by in Splunk Enterprise
‎09-10-2020 05:02 PM
‎09-10-2020 05:02 PM
Hello! We have a requierment to create an alert for one of the cloud application data. The following fields are like account name, account id etc should be sent to the repective RemediationContactEmail id. we are able to create an alert with all the above with csv attachment by using command sendemail However we observed that for particular set of results , if the recipients are same , in that case they will be receiving email for each results. For example We tried below sample query to make some sample event sets using makeresults : | makeresults | eval id="12345" | eval Account_ID=1234567 | eval Remediation_Contact_Email="abc123@xyz.com" | append     [| makeresults     | eval id="67890"     | eval Account_ID=4567895      | eval Remediation_Contact_Email="abc123@xyz.com" ] | append     [| makeresults     | eval id="13579"     | eval Account_ID=6785432    | eval Remediation_Contact_Email="abc123@xyz.com" ] | map     [ makeresults     | eval id="$id$"     | eval Account_ID=$Account_ID$     | eval Remediation_Contact_Email="$Remediation_Contact_Email$"     | fields - _time     | sendemail to=$Remediation_Contact_Email$ subject="Test Sendemail" message=" Hello, There is an alert for your account  id  : $id$  account id : $Account_ID$  Regards, xyz Security Operation Team" maxinputs=10000 sendcsv=true inline=true format=csv priority=1 ] Here the recipient "abc123@xyz.com" received 3 different emails for each result with attachments as shown in the bellow screenshot.  Any help or guidance will be much appreciated here to group all the relevant results in data set with respect to remidiation contact email id and send their results in single attachment. We tried to group it using stats command however the attachment doesn’t look good as it will have a single row with all results for that particular email.we have more number of RemediationContactEmail id for each Account group in data set so if there are any 10 alerts triggered for one respective RemediationContactEmail id all the 10 alerts should be consolidated and grouped from data set then send it to that particullar recepient as one attachment rather than sending 10 different emails ... View more
Labels
Contact Me
Online Status
Offline
Date Last Visited
‎10-20-2020 04:49 PM