Splunk Integration Guide

Splunk collects and indexes data from just about any source imaginable – network traffic, Web servers, custom applications, application servers, hypervisors, GPS systems, stock market feeds, social media, and preexisting structured databases. Integrate AlertOps’ alert management platform with Splunk to receive and respond to critical alerts through email, SMS, push notification, and phone alerts. AlertOps ensures that alerts received from Splunk always reach the correct, available team member by utilizing escalation policies and on-call schedules.

AlertOps Configuration

Step 1: From the main menu, click Integrations and, then select Inbound Integrations from the sub menu.

Step 2: Select the Add Web API Integration button.

Step 3: You should now be on the Web API Integration Detail page. Select Splunk from the Integration Template dropdown menu. 

Step 4: Enter a name for the Integration. Select a message rule to determine the integration's escalation policy. And, enter the names of recipient user(s) and/or group(s). Click Save Changes. Then, click Copy URL to copy the URL endpoint to be used in the Splunk configuration.

Splunk Configuration

Step 1: Create a webhook in Splunk Click here to view Splunk Webhook Documentation.

Alert Triggering Information

AlertOps will automatically create an incident when a new alert is received from Splunk.

Testing and Troubleshooting

Click here to read about Web API Testing and Troubleshooting. 

Did this answer your question?