Alerts not sending

[Josefius]

I have a Nagios Log Server verison 2024R1.3.4 running on RHEL 9 what will not send notification emails.

This server is configured to alert when someone logs in, the threshold settings:


Query:
"query_string": {
"query": "(type:\"syslog-nimble\") (host:\"10.<snip>\" OR host:\"10.<snip>\" OR host:\"10.<snip>\") AND (\"Status:Succeeded\" OR \"Status:Failed\") not (object:admin access type:su) not (access type:oauth client ip:127.0.0.1)"



The email method is SMTP to Office365, the host is allowed to relay.

I would appreciate any guidance,

Thanks, in advance.

Joe

[jmichaelson]

Hi Josefius

Do the alerts show up on the alerts page as an active alert?

[Josefius]

When I click "Alert History" and filter for "Warning" nothing shows up. it's all "OK". I know the query is highlighting what I am filtering for.

[Josefius]

Would the not tagging as a 'warning' be related to this?

"filter": {
"bool": {
"must": [
{
"range": {
"@timestamp": {
"from": 1752774069635,
"to": 1752860469635

[DoubleDoubleA]

@Josefius are other alerts sending via email and it's just that this one isn't, or email alerts aren't functioning at all?

[kg2857]

If there are no alerts the issue isn't that alerts aren't being mailed, it's that they never happened. I'd change the thresholds and login as the user in question.