Ingest alerts in Splunk Incident Intelligence 🔗
To ingest alerts in Incident Intelligence, you can create a detector for one of the available alert sources to automatically pass alerts into Incident Intelligence or you can ingest third-party alerts using an ingest endpoint. After alerts have been ingested, you can view them on the Alerts tab of Incident Intelligence.
Alert source |
Documentation |
---|---|
Splunk APM |
|
Splunk Infrastructure Monitoring |
|
Splunk RUM |
See Create a detector. |
Splunk Synthetic Monitoring |
|
Ingest endpoint |
Documentation |
---|---|
Amazon CloudWatch |
|
Azure Monitor |
|
Prometheus |
If you are setting up Incident Intelligence for the first time, next you need to create and configure an incident policy. See Create and configure incident policies.