Notifications via Splunk On-Call

1. Function

The incident management platform Splunk On-Call handles the distribution of messages from dozens of different sources, which can be selected as integrations directly in the web interface. A generic REST back-end is available for Checkmk.

2. Configuring Splunk On-Call

You do not need to explicitly activate the notifications from Checkmk, only the REST endpoint address:

In Splunk On-Call under Integrations, call the REST Generic item.
Copy the displayed REST endpoint URL.

3. Configuration in Checkmk

You have already learned how to set up Checkmk notifications in general in the article about notifications. Inn Checkmk you only need now to specify this key:

For the Notification Method choose Splunk On-Call.
Enter the copied URL under Splunk On-Call REST Endpoint.

For testing you can use the Fake check results and Custom notification commands.

On this page

1. Function
2. Configuring Splunk On-Call
3. Configuration in Checkmk

3.1. Server and VMs

3.2. Appliance, container, cloud

3.3. Updates

4.1. Server

4.2. Sites

5.1. Hosts

5.2. Services

5.3. Rules

5.4. Supporting configurations

5.5. Users and permissions

5.6. Notifications

5.7. Events

6.1. Checkmk agents and SNMP

6.2. Agent extensions

6.3. VM, cloud, container

6.4. Endpoints

7.1. General

7.2. Commands in views

8.1. Analysis

8.2. Prognosis

11.1. APIs for automation

11.2. APIs for development

11.3. Development of check plug-ins

12.1. The Checkmk Micro Core (CMC)

Notifications via Splunk On-Call

1. Function

2. Configuring Splunk On-Call

3. Configuration in Checkmk