Problem Solving : How to update splunk alerts/saved searches using Python SDK

preview_player
Показать описание
In this video I have discussed about a very specific use case where we can use splunk python SDK to update vast number of alerts/saved searches in one go.

Python SDK API Reference :

Search API end points :

Code used in this tutorial can be downloaded from the below repo,
  1. Splunk & Machine Learning
  2. splunk
  3. how to
  4. alert
  5. update
  6. python sdk
Рекомендации по теме
Working backward to 0:05:57

Working backward to solve problems - Maurice Ashley

Clarifying the '5 0:03:20

Clarifying the '5 Whys' Problem-Solving Method

The 5 Whys 0:02:03

The 5 Whys of Problem-Solving Method

Problem-Solving for Developers 0:10:44

Problem-Solving for Developers - A Beginner's Guide

5 Step Formula 0:07:29

5 Step Formula to Solve Any Problem | Brian Tracy

How to Become 0:05:00

How to Become a Problem Solver | Brian Tracy

Find Problem, Solve 0:05:37

Find Problem, Solve Problem | Ariana Glantz | TEDxMemphis

Improve Your Problem 0:03:33

Improve Your Problem Solving Skills

Introduction to Problem 2:27:47

Introduction to Problem Solving - 04 | One Shot | Karnataka PU 1 | Computer science | In Kannada

Tips to be 1:08:20

Tips to be a better problem solver [Last live lecture] | Ep. 10 Lockdown live math

Think Deeply & 0:10:41

Think Deeply & Clearly | Problem Solving Session By Sandeep Maheshwari in Hindi

SHARPEN YOUR ANALYTICAL 0:08:19

SHARPEN YOUR ANALYTICAL AND PROBLEM SOLVING SKILLS

How to Awaken 0:22:45

How to Awaken & Enhance Your Analytical Problem-Solving Mind

The Ultimate Problem–Solving 0:16:19

The Ultimate Problem–Solving Strategy | My Secret to Winning Physics, Math, and Coding Competitions...

4 Steps in 0:03:50

4 Steps in Solving Problems

The Psychology of 0:08:18

The Psychology of Problem-Solving

Solving Problems - 0:03:09

Solving Problems - Building Resilience with Hunter and Eve

Problem solving | 0:05:51

Problem solving | Processing the Environment | MCAT | Khan Academy

15 Strategies to 0:14:17

15 Strategies to Improve Your Problem Solving Skills

The Harsh Reality 0:16:03

The Harsh Reality of Problem Solving: What to Do When Nothing Works

The Essentials of 0:37:02

The Essentials of Problem Solving

Solving Problems 0:04:50

Solving Problems

Problem Solving: 6 0:02:20

Problem Solving: 6 Skills needed to solve any problem

Ants Vs Humans: 0:00:30

Ants Vs Humans: Problem Solving Skills

Комментарии
Автор

Thanks for the sharing! Also tried to count for the presenter's word "OK" 🙂

amosart
Автор

Hi
Thanks for the video.
How do you send an alert to Distribution list <DL> instead of adding each and every recipient.?

krishnamalleboina
Автор

Do we have any video on creating alerts, scheduling them, and see them triggered. I mean basically from starting to end of alert cycle by using Python sdk

Sandeep
Автор

Hi, can we update the splunk Alert query using SDK

venugoski
Автор

Hello Siddharth,
Thanks for the
I have a use case, I have created the code to disable and enable the Splunk alerts dynamically based on the Splunk alert names in a lookup file.
I wanted the python code to be executed in the Splunk environment without manually running it. I don't want to go with the cron schedule at the OS level as this script is for Splunk cloud.
can we create a Splunk alert that can trigger this python code every 10 min?
as this is not a custom command, I cant call this via the custom commands approach. Also, i cant call this via scripted input as we are not indexing anything here.
Any inputs from you is highly

rajkumarkandasamy
Автор

Hi sidhartha, i have multiple .log files in another tool and i need to move them in splunk by writing python script, can you help me .. can you make a video

mamathapanabaka
Автор

Thanks for your videos, Can you please post the video on the topic : splunk alerts which will raise service now incident whenever Splunk alert is triggered.

sravankumar
Автор

Hi could you please do a video on how to write splunk search using python 3 or above using our own user if and password and run it at constant interval

Royalityfree
Автор

Thank you so much Sid for this video, really appreciate your efforts.
2 query I have -
1. what will be host in service method when using splunk cloud, will it be the url from where I login to splunk.
2. Suppose I have to filter all those alerts which are schedule to run at 9am in an app then how can we get those ?

AbhishekVerma-hxbq
Автор

Hi sir, I have a question for you. I'm trying to modify only comment for one alert. How can I do that? Do you have a video that makes something like that?
My code:

import splunklib.client as client

service = client.connect(host=self.HOST_API, port=self.PORT_API, username=self.USARNAME_API, password=self.PASSW_API)
incidents = client.Incidents(service)
all_incidents = incidents.incidents
incident_id =
incident =
incident.update(comment="New comment for the alert")



Thank you !

maciasalvasalva
visit shbcf.ru