Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Show table results from Splunk in OpsGenie

heidi.rechek
heidi.rechek September 10, 2021

We create alerts  with table results but when they send via the OPSGenie integration, we only see one row or its not cormatted as readable. Is there a way to solve this? 

Answer
Watch
Like Consulente Atlassian likes this
745 views

1 answer

0 votes
Allen Barnard
Allen Barnard
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
September 14, 2021

Hi @heidi.rechek

I have looked at our documentation and can see no indication that sending a table is included in the default functionality,  could you please confirm if someone may have modified our plugin that is installed on your Splunk server?


View More Comments
heidi.rechek
heidi.rechek October 13, 2021

Is the data from splunk to OpsGenie passed in json or a specific format? 

Is there a way to make it possible to pass tabled results through the integration? 

Like
Allen Barnard
Allen Barnard
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
October 22, 2021

Hi @heidi.rechek

Sorry for the delay in response.  Yes, the payload sent from Splunk to Opsgeie is JSON.  If you are using Splunk Enterprise your admins will be able to access our Opsenie plugin, there is an opsgenie.py script that can be customized so customers can include additional functions to facilitate their use cases.  Your admins/developers will need to construct a logic in Splunk to export the table to a file, the extend the before mentioned opsgenie.py to include a function that triggers the Add Alert Attachment API call.

2 things to note is the above is not possible using the Splunk Cloud, you need to be running your own hosted version of Splunk Enterprize server, lastly please note the Opsgenie Support only supports the default functionality of each integration, if you do not have admin/developers who can handle the task please refer to an Atlassian partner in your local region. 

I hope this helps, thanks and kind regards,

Allen

Like
Reply

Suggest an answer

Log in or Sign up to answer
Opsgenie
Opsgenie
DEPLOYMENT TYPE
CLOUD
TAGS
AUG Leaders

Atlassian Community Events

    See all events