Splunk® Mobile for iOS

Download and Use Splunk Mobile

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Send alerts and dashboards to Splunk Mobile users

You can send actionable alerts, visualizations, and push notifications from the Splunk Search & Reporting app to Splunk Mobile users. When data triggers an alert, Splunk Mobile users receive the alert on their mobile device.

See View, respond to, and share alerts for more information about viewing alerts on the go with Splunk Mobile.

To prevent your data requests from timing out, avoid dashboards with more visualizations than your Splunk Enterprise max concurrent searches setting. You can also increase the search capacity by increasing the number of indexers in your Splunk Enterprise deployment. See How concurrent users and searches impact performance in the Splunk Enterprise Capacity Planning manual for more information.

Prerequisites

Complete the following before sending alerts to the Splunk Mobile app:

If you were previously using Splunk Cloud Gateway, alerts you created in Splunk Cloud Gateway do not migrate to Splunk Secure Gateway. You must recreate those alerts to use them with Splunk Secure Gateway.

Send Search & Reporting alerts to mobile devices

  1. Navigate to the Search page in the Search & Reporting app.
  2. Create a search.
  3. Click Save As > Alert.
    Or, navigate to an existing alert in the Alerts tab and select Edit > Edit Alert next to the alert you want to send.
  4. Schedule the alert and specify trigger conditions.
  5. Click +Add Actions > Send to Splunk Mobile.
  6. Select a role to receive the alert. All users with the selected role will receive the alert.
  7. Specify the alert severity.
  8. Enter a title.
  9. (Optional) Enter a description.
  10. (Optional) Select a visualization. See Visualization support in the Splunk Secure Gateway Release Notes manual for compatible visualizations.
  11. (Optional) Provide a response option:
    1. Enter an Action label. This is what the mobile user taps to respond to the alert.
    2. Enter an https Action URL.
      This is the URL that opens when the mobile user responds to the alert. Both an action label and action URL are required when setting up a response option.
  12. Click Save. Splunk Enterprise sends the alert when the data meets your trigger conditions.
Last modified on 25 July, 2022
PREVIOUS
Download Splunk Mobile for iOS
  NEXT
View, respond to, and share alerts with Splunk Mobile

This documentation applies to the following versions of Splunk® Mobile for iOS: 1.2.0, 1.2.1, 1.3.0, 1.3.1, 1.3.2, 1.4.0, 1.4.1, 1.4.2, 1.5.0, 1.7.0, 1.8.0, 2.0.0, 2.0.1, 2.1.0, 2.2.0, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.3.0, 2.4.0, 2.5.0, 2.6.0, 2.7.0, 2.8.0, 2.9.0, 2.10.0, 2.11.0, 2.12.0, 2.12.1, 2.13.0, 2.14.0, 2.15.0, 2.16.0, 2.17.0, 2.18.0, 2.19.0, 2.20.0, 2.21.0, 2.22.0, 2.23.0, 2.24.0, 2.25.0, 2.26.0, 2.27.0, 2.28.0, 2.29.0, 2.29.1, 2.30.0, 2.31.0, 2.31.1, 2.31.2, 2.32.0


Was this documentation topic helpful?


You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters