Solved: Is the saved search called by the map command allo...

alexl1 · ‎10-09-2017

hi, I want to send an email / run a script one time each for a bunch of ip's in a list, so I was going to iterate over them with the map function with a saved search, instead of setting up a separate saved search for each ip. However I can't get the emails to send. Is the saved search called by the map function allowed to send emails/run scripts?

Thanks,

justinatpnnl · ‎10-09-2017

You should be able to do this without using the map command. You just need to have the email address in your search results.

example:

Then you can set up an alert action to send an email FOR EACH RESULT using the value from the email field in the TO address:

View solution in original post

lfedak_splunk · ‎10-09-2017

Hey @alexl1, if they solved your problem, remember to "√Accept" an answer to award karma points 🙂

justinatpnnl · ‎10-09-2017

You should be able to do this without using the map command. You just need to have the email address in your search results.

example:

Then you can set up an alert action to send an email FOR EACH RESULT using the value from the email field in the TO address:

Is the saved search called by the map command allowed to send emails/run scripts?

New in Observability Cloud - Explicit Bucket Histograms

Updated Team Landing Page in Splunk Observability

New! Splunk Observability Search Enhancements for Splunk APM Services/Traces and ...