2. Creating new Alert
a) Go to Alerting -> Monitors
b) Define new action that triggers when you would like to send an alert. Select previously created SMS channel
c) In the Message field add your alert message in JSON format.
For example:
{ "to": ["+48111222333"],
"text": "Wazuh Alert: {{ctx.monitor.name}} just entered alert status. Please check the issue.
Trigger: {{ctx.trigger.name}}
Severity: {{ctx.trigger.severity}}
PeriodStart: {{ctx.periodStart}}"
}
or
{ "to": ["admin-group"],
"text": "Wazuh Alert: {{ctx.monitor.name}} just entered alert status. Please check the issue.
Trigger: {{ctx.trigger.name}}
Severity: {{ctx.trigger.severity}}
PeriodStart: {{ctx.periodStart}}"
}
You can use a phone number (for example +48111222333) or a group defined in SMSEagle Phonebook (for example admin-group) as recipient.
That’s it!😊
Optionally, you can use an escalation group on the SMSEagle to take advantage of the escalation feature.