email alert not generated

Open SadikiOnga opened this issue 6 years ago • 0 comments

hellow everyone ! I'm new to elastalert and have configured to send email alert but nothing appear in gmail account. i have configured host centos 7 ssmtp and can receive email via terminal (command line) . any help will be much appreciated.

#rule file#

name: Monitor Login Attempts type: frequency index: filebeat-* num_events: 1 timeframe: minutes: 1440 filter:

query: query_string: query: "message: authentication failure OR failure password" timestamp_field: "@timestamp" alert:
"email" email: "[email protected]" smtp_host: "smtp.gmail.com" #for google email addresses smtp_port: 587 #for google email addresses smtp_ssl: true from_addr: "[email protected]" smtp_auth_file: "smtp_auth_file.yaml"

#smtp_auth_file#

user: "[email protected]" password: "xxxxx"

Sep 27 '19 14:09 SadikiOnga