Create an alert to monitor CPU usage using Splunk Light
Alerts actively monitor your data and notify you when an alert is triggered. You can schedule alerts, or run an alert in real-time. Both provide insight into your data.
In this scenario you create an alert from a search, configure that alert, and add alert actions.
What you need for this scenario
To complete this scenario, first ensure that you have Splunk Light installed and running. You must be using an on-premise version of Splunk Light. Additionally, ensure that you can enable the Splunk Add-On for Unix and Linux.
Complete each of these steps to reach the goal of creating a useful alert
Identify spikes in data and notify using Splunk Light
Enable the Splunk Add-On for Unix and Linux
This documentation applies to the following versions of Splunk® Light (Legacy): 6.4.0, 6.4.1, 6.4.2, 6.4.3, 6.4.4, 6.5.0, 6.5.1, 6.5.2, 6.5.3, 6.5.1612 (cloud service only), 6.6.0, 6.6.1, 6.6.2, 6.6.3, 7.0.0, 7.0.1, 7.0.2, 7.0.3, 7.1.0, 7.1.1, 7.1.2, 7.1.3, 7.2.0, 7.2.1, 7.2.2, 7.2.3, 7.2.4, 7.2.5, 7.2.6, 7.3.0, 7.3.1, 7.3.2, 7.3.3, 7.3.4, 7.3.5, 7.3.6