Alerting
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Ask a Question

How do I create an alert triggering if a task in task-scheduler fail, or for some reason doesn't start?

mceye
New Member
‎02-28-2019 02:26 AM

Have a task on a server that I want to monitor.
Can I search for specific event from that server and get an alert if it's spotted?
How does that search look like?

0 Karma
Reply

renjith_nair
Legend
‎03-01-2019 06:52 PM

@mceye

It depends on the events of the task scheduler. For e.g. if you have the logs from tasks available in splunk, you can search for the string which tells you whether the task was executed successfully or not. If you do not see this event (it's either failed or didn't run) for a specific time (schedule) send an alert

For e.g. if a successful task execution shows as "task=task1, status=completed" , you can search for this event and send an alert if no results found.

It would be helpful if you could share some sample events

Happy Splunking!
0 Karma
Reply
Get Updates on the Splunk Community!

Extending Observability Content to Splunk Cloud

Watch Now!   In this Extending Observability Content to Splunk Cloud Tech Talk, you'll see how to leverage ...

More Control Over Your Monitoring Costs with Archived Metrics GA in US-AWS!

What if there was a way you could keep all the metrics data you need while saving on storage costs?This is now ...

New in Observability Cloud - Explicit Bucket Histograms

Splunk introduces native support for histograms as a metric data type within Observability Cloud with Explicit ...