Set up alert actions
Alert actions help you respond to triggered alerts. You can enable one or more alert actions. Learn about the available options.
|To learn about||See|
|Sending email notifications when alerts trigger||Email notification action|
|Displaying a message in a chat room or updating another web resource||Use a webhook alert action|
|Writing the results of the triggered alert or scheduled report to a CSV lookup file||Output results to a CSV lookup|
|Logging and indexing searchable alert events||Log events|
|Adding an alert to a list of recently triggered alerts for monitoring||Monitor triggered alerts|
The script alert action is deprecated. As an alternative you can define customized actions that can include scripts.
Define alert suppression groups to throttle sets of similar alerts
Email notification action
This documentation applies to the following versions of Splunk Cloud Platform™: 8.2.2112, 8.1.2012, 8.1.2101, 8.0.2006, 8.0.2007, 8.1.2009, 8.1.2011, 8.1.2103, 8.2.2104, 8.2.2105, 8.2.2106, 8.2.2107 (latest FedRAMP release), 8.2.2109, 8.2.2111