Hi,
There's no way to handle alert escalation out of the box.
You could, however, edit the sendemail.py Python script that fires when an alert triggers to introduce/keep state and handle escalation logic. You would need to be versant in Python to do so.
Cheers
Hi muebel,
This might be a bit old, but did you find out a way to do this? I am facing a similar situation and this is what I could dig:
2-https://answers.splunk.com/answers/237950/triggering-an-alert-on-alerts-alert-on-alerts.html
thanks.
Hi,
There's no way to handle alert escalation out of the box.
You could, however, edit the sendemail.py Python script that fires when an alert triggers to introduce/keep state and handle escalation logic. You would need to be versant in Python to do so.
Cheers