Slack Notification Alert App is failing for one particular alert with HTTP Error 500. I've tried deleting the alert and recreating it. I've also tried regenerating a new API key from Slack. Still doesn't work. All other Slack alerts work fine. I've tried using default channel configured for API Webhook and a different channel, no difference.
Logs from $SPLUNK_HOME/var/log/splunk/splunkd.log:
09-21-2016 09:09:41.981 -0500 INFO sendmodalert - Invoking modular alert action=slack for search="Alert: Network Configuration Change" sid="rt_scheduler__johnsmith_Y2lzY29faW9z__RMD57290e864a70f2312_at_1474405860_7.2" in app="cisco_
ios" owner="johnsmith" type="saved"
09-21-2016 09:09:42.015 -0500 WARN sendmodalert - action=slack STDERR - No channel supplied, using default for webhook
09-21-2016 09:09:42.291 -0500 ERROR sendmodalert - action=slack STDERR - Error sending message: HTTP Error 500: Server Error
09-21-2016 09:09:42.292 -0500 FATAL sendmodalert - action=slack STDERR - Sending the slack message failed
09-21-2016 09:09:42.295 -0500 INFO sendmodalert - action=slack - Alert action script completed in duration=313 ms with exit code=0
↧