Flashduty Docs
中文EnglishRoadmapAPI官网控制台
中文EnglishRoadmapAPI官网控制台
  1. Integrations
  2. Alerts integration
  • Getting Started
    • Introduction
    • Quick start
    • FAQ
    • Product Comparison
  • Incidents
    • What is an Incident
    • View Incidents
    • Handle Incidents
    • Escalations and Assignments
    • Custom Fields
    • Custom Actions
    • Alert Noise Reduction
    • Past Incidents
    • Outlier Incidents
  • Configure Flashduty
    • Channels
    • Integrate Alerts
    • Alert Noise Reduction
    • Escalation Rules
    • Label Enrichment
    • Schedules
    • Templates
    • Service Calendars
    • Preferences
    • Alert Routing
    • Silence and Inhibition
    • Filters
    • Notification Bots
    • Alert Pipeline
  • Platform
    • Teams and Members
    • Permissions
    • Single Sign-On
    • Insights
  • Advanced Features
    • Referencing Variables
    • Dynamic Assignment
  • Integrations
    • Alerts integration
      • Standard Alert Integration
      • Email Integration
      • Nightingale/FlashCat Integration
      • Prometheus Integration
      • Grafana Integration
      • Zabbix Integration
      • Uptime Kuma Integration
      • Alibaba Cloud ARMS Integration
      • Alibaba Cloud Monitor CM Event Integration
      • Alibaba Cloud Monitor CM Metrics Integration
      • Alibaba Cloud SLS Integration
      • AWS CloudWatch Integration
      • Azure Monitor Integration
      • Baidu Cloud BCM Integration
      • Huawei Cloud CES Integration
      • Influxdata Integration
      • Open Falcon Integration
      • PagerDuty Integration
      • Tencent BlueKing Integration
      • Tencent Cloud CLS Integration
      • Tencent Cloud Monitor CM Integration
      • Tencent Cloud EventBridge
      • OceanBase Integration
      • Graylog Integration
      • Skywalking Integration
      • Sentry Integration
      • Jiankongbao Integration
      • AWS EventBridge Integration
      • Dynatrace Integration
      • Huawei Cloud LTS Integration
      • GCP Integration
      • Splunk Alert Events Integration
      • AppDynamics Alert Integration
      • SolarWinds Alert Events Integration
      • Volcengine CM Alert Events Integration
      • Volcengine CM Event Center Integration
      • Volcengine TLS Integration
      • OpManager Integration
      • Meraki Integration
      • Keep Integration
      • ElastAlert2 Alert Integration
      • StateCloud Alert Events
      • Guance Alert Events
      • Zilliz Alert Events
      • Huawei Cloud APM Alerts
      • zstack integration
    • Change integration
      • Standard Change Event
      • Jira Issue Events
    • IM integration
      • Feishu (Lark) Integration Guide
      • Dingtalk Integration
      • WeCom Integration
      • Slack Integration
      • Microsoft Teams Integration
    • Single Sign-On
      • Authing Integration
      • Keycloak Guide
      • OpenLDAP Guide
    • Webhooks
      • Alert webhook
      • Incident webhook
      • Costom action
  • Terms
    • Terms of Service
    • User Agreement/Privary Policy
    • SLA
  1. Integrations
  2. Alerts integration

Splunk Alert Events Integration

Sync Splunk alert events to Flashduty via webhook for automated alert noise reduction.

In Flashduty

You can obtain an integration push URL through either of these two methods:

Using Private Integration

Choose this method when you don't need to route alert events to different channels. It's simpler and recommended.

Expand
  1. Go to the Flashduty console, select Channel, and enter a specific channel's details page
  2. Select the Integration tab, click Add Integration to enter the integration page
  3. Choose Splunk integration and click Save to generate a card
  4. Click the generated card to view the push URL, copy it for later use, and you're Done

Using Shared Integration

Choose this method when you need to route alerts to different channels based on the alert event's payload information.

Expand
  1. Go to the Flashduty console, select Integration Center=>Alert Events to enter the integration selection page
  2. Select Splunk integration:
    • Integration Name: Define a name for this integration
  3. Configure the default route and select the corresponding channel (after the integration is created, you can go to Route to configure more routing rules)
  4. Click Save and copy the newly generated push URL for later use
  5. Done

In Splunk

I. Splunk Alert Push Configuration

  1. Log in to your Splunk console
  2. In the Search and Report application, search for keywords you want to monitor, such as "error"
  3. In the upper right corner's save menu, select Alerts to configure the search keywords as monitoring items
drawing
  1. In the configuration popup, enter relevant information. Configure the set up and Triggering conditions sections according to your needs
  2. In the Trigger Action section, click Add Action and select Webhook
drawing
  1. In the Webhook section, enter the integration push URL in the URL field (the URL will be generated after saving the integration name on the current page) and save to complete the alert configuration
drawing

II. Status Mapping

Since Splunk alert events don't differentiate severity levels, all alert events pushed from Splunk to Flashduty will have a Warning status and won't include recovery events.
修改于 2025-03-27 07:52:02
上一页
GCP Integration
下一页
AppDynamics Alert Integration
Built with