Hello, On Wednesday, April 12, 2017 9:14:27 AM EDT Maria Tsiolakki wrote: Sort of. You would have to create an audispd plugin to do it. I think that this is a nice question to make a blog post out of. So, I started a series of blogs today to show people how to write special purpose plugins. In essence you would put a key on the event you want to get an email on, write a plugin that filters for that key, then call sendmail to create the message. If you have patience, I will give you the source code in the blog[1] to do this over the next couple days. If you are in a hurry and can write your own plugin, then skeleton code is here: https://github.com/linux-audit/audit-userspace/tree/master/contrib/plugin -Steve [1] - http://security-plus-data-science.blogspot.com/