Auto-acknowledging mailing notification based on error string

asif.safdary · June 24, 2021, 1:26pm

Dear community,

is there a possibility to auto-acknowledge elastic alerts and not send out duplicate emails if already an email was sent out for a specific log source or error string?

There is the possibility to set the watcher to wait a specific period of time to alert again, but I am interested in a solution to send out for error strings from unique log source just once and auto acknowledge the others for eg. 1 day.

Thanks

spinscale · June 29, 2021, 9:05am

Have you seen the throttle period?

system · July 27, 2021, 9:06am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Is it possible to acknowledge an alert / watcher? Elasticsearch elastic-stack-alerting	3	883	November 30, 2022
Stop sending duplicate error in mail alert in watcher Elasticsearch	2	1087	September 24, 2019
【Please share info】Plugins and OSS for implementing alert functions in kibana (elasticsearch) version 7 series Kibana elastic-stack-alerting	1	238	May 1, 2023
Send email whenever error occurs in the logs Elasticsearch elastic-stack-monitoring , elastic-stack-alerting	1	370	November 10, 2020
+1 for automatic acknowledgement in watcher Elasticsearch elastic-stack-alerting	6	1584	June 30, 2017

Auto-acknowledging mailing notification based on error string

Related topics