List Alert Muting Rules
Retrieves muting rules based on the query you specify in the query parameter.
External Documentation
To learn more, visit the Splunk Observability documentation.
Basic Parameters
| Parameter | Description |
|---|---|
| Include | Specifies the type of muting rules you want to retrieve. |
| Order By | The metadata property on which the API should sort the results. For example: order_by=-sf_timestamp |
| Query | Query that specifies the muting rules you want to retrieve. |
Advanced Parameters
| Parameter | Description |
|---|---|
| Limit | The number of results to return from the result set. |
| Offset | The result object in the result set at which the API should start returning results to you. |
Example Output
{
"count": 0,
"results": [
{
"created": 1556825430000,
"creator": "AAXYAAAAAZ3",
"description": "string",
"filters": [
{
"NOT": false,
"property": "aws_availability_zone",
"propertyValue": "us-east-1a"
},
{
"NOT": true,
"property": "cpu.utilization",
"propertyValue": 10.7
},
{
"NOT": false,
"property": "aws_availability_zone",
"propertyValue": [
"us-east-2a",
"us-west-1a",
"emea-west-2a"
]
}
],
"id": "string",
"lastUpdated": 1557689430000,
"lastUpdatedBy": "string",
"linkedTeams": [
"AbcdEf1ABCD",
"FO1Vq3ABXYZ"
],
"sendAlertsOnceMutingPeriodHasEnded": true,
"startTime": 0,
"stopTime": 0
}
]
}
Workflow Library Example
List Alert Muting Rules with Splunk Observability and Send Results Via Email
Preview this Workflow on desktop