Create kibana watcher to trigger email with containg kibana json attribute value

260 Views Asked by MKumar At 24 July 2022 at 16:46

We have multiple applications which pushing log into Kibana. In JSON, below parameter will be there :

srcSystem.componentName: "DATA-LAMBDA-FUNCTION"
srcSystem.data.auditJson.job_status: "FAILURE"
srcSystem.data.auditJson.errorMessage: "Bad SQL Grammer.."
srcSystem.data.auditJson.entityName: "Test_Entity1234"

There will be chances available multiple job_status: FAILURE within 5 mins. I want to create Kibana Watcher to trigger email if there are at least single failure every 5 mins. Email should contain like below:

srcSystem.data.auditJson.entityName srcSystem.data.auditJson.errorMessage Test_Entity1234 Authentication Failure Test_4312 Server Down Address_Entity Bad SQL

Can you please help me to create JSON Payload to create Watcher through Kibana Watcher API?

Original Q&A

There are 1 best solutions below

MKumar On 26 December 2022 at 14:45 BEST ANSWER

Got the solution by providing the exact JSON.

Create kibana watcher to trigger email with containg kibana json attribute value

There are 1 best solutions below

Related Questions in ELASTICSEARCH

Related Questions in KIBANA

Related Questions in ELASTICSEARCH-WATCHER

Trending Questions

Popular # Hahtags

Popular Questions