Skip to main content
Version: Next

Quick Start

Splunk Enterprise

This guide outlines the steps to set up Alert Manager Enterprise (AME) on a single-instance or single Search Head Splunk Enterprise environment:

  1. Create an index named ame_default.
  2. Generate a HEC token with write permissions for the ame_default index.
  3. Install Alert Manager Enterprise from Splunkbase by downloading the app or using in-product installation.
  4. Complete the AME Setup Page.
  5. Create an alert and configure an Alert Action.
  6. Verify incoming events in the Event Summary.

Splunk Cloud

  1. Create an index named ame_default.
  2. Generate a HEC token with write permissions for the ame_default index.
  3. Install Alert Manager Enterprise using the in-product installation.
  4. Complete the AME Setup Page.
  5. Create an alert and configure an Alert Action.
  6. Verify incoming events in the Event Summary.

Watch also our Setup Video.