I set up an alert so that when it triggers it runs a script called test.bat (this is a windows environment) which is located in $SPLUNK_HOME/bin/scripts. The .bat script is just a one liner that says "echo hello"
splunkd.log shows this error when it tries to execute it:
*08-14-2018 17:09:07.268 -0700 ERROR script - sid:scheduler__jeff_search__RMD581e2e8e1bcfdf00c_at_1534291740_150 command="runshellscript", Script: C:\Program Files\Splunk\bin\scripts\test.bat exited with status code: 1*
This is how I have my alert setup (see picture) - any help is appreciated.
![alt text][1]
[1]: /storage/temp/255712-testbat.png
↧