Splunk® Light (Legacy)

Search and Reporting Examples

Acrobat logo Download manual as PDF


Acrobat logo Download topic as PDF

Create an alert to monitor CPU usage using Splunk Light

Alerts actively monitor your data and notify you when an alert is triggered. You can schedule alerts, or run an alert in real-time. Both provide insight into your data.

In this scenario you create an alert from a search, configure that alert, and add alert actions.

What you need for this scenario

To complete this scenario, first ensure that you have Splunk Light installed and running. You must be using an on-premise version of Splunk Light. Additionally, ensure that you can enable the Splunk Add-On for Unix and Linux.

Scenario overview

Complete each of these steps to reach the goal of creating a useful alert

  1. Enable the Splunk Add-On for Unix and Linux.
  2. Create your search.
  3. Save your search as an alert.
  4. View and edit your alert.
  5. View Triggered Alerts list.
Last modified on 11 August, 2016
PREVIOUS
Identify spikes in data and notify using Splunk Light
  NEXT
Enable the Splunk Add-On for Unix and Linux

This documentation applies to the following versions of Splunk® Light (Legacy): 6.4.0, 6.4.1, 6.4.2, 6.4.3, 6.4.4, 6.5.0, 6.5.1, 6.5.2, 6.5.3, 6.5.1612 (cloud service only), 6.6.0, 6.6.1, 6.6.2, 6.6.3, 7.0.0, 7.0.1, 7.0.2, 7.0.3, 7.1.0, 7.1.1, 7.1.2, 7.1.3, 7.2.0, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, 7.3.5, 7.3.6


Was this documentation topic helpful?

You must be logged into splunk.com in order to post comments. Log in now.

Please try to keep this discussion focused on the content covered in this documentation topic. If you have a more general question about Splunk functionality or are experiencing a difficulty with Splunk, consider posting a question to Splunkbase Answers.

0 out of 1000 Characters