Alerting
The main page of the Alerting app displays signal KPIs that provide an overview of the constantly and rapidly changing states in your IT estate. Quickly check important trends, derived from signals and triggered by observed entities, from the Signal KPI widgets.
Signal KPIs Copied
- From the Context drop-down list, select which entity group to filter data.
Note
The options come from the entity groups you created in the Overview app.
-
Click on a Signal KPI widget to refresh the graph. You’ll see a comparison of the current and previous periods for the selected KPI on the graph.
The current and previous periods on the timeline follow a set interval. For example, if the current period has an interval of 5 minutes (
T-5
toT
), the previous period compares with 5 minutes prior that time (T-10
toT-5
).
Note
To learn about a Signal KPI widget, click on the lower-right corner of the widget.
-
To change chart settings, click and choose your preferred options. You can show a mix of bars and lines or line bullets on the chart.
-
Below the graph, scroll down to review sections for signal counts. Clicking a row on any of the sections will filter and refresh the view. You can further drill down on the data by selecting more rows. To remove a filter, click beside the chip.
-
On the Counts by Entity section, click a row to view more details on the Entities page.
Entity Alerts page Copied
The Entity Alerts page is divided into three sections:
- Options header — allows you to define groups and filters to organise monitored entities.
- Alerts section — shows the most recent alerts sorted by groups.
- Details section — shows the signal information associated with the selected alert.
Options header Copied
The options header allows you to Filter or Group results on the page in order to focus on only the relevant information.
You can Group by one or more attributes or dimensions. You will see a prompt to start the expression when typing in the field.
The Alerts section will change to a folder based list when grouping is enabled.
You can Filter by one or more attributes or dimensions. You will see a prompt to start the expression when typing in the field.
When data is grouped, filters operate at the group level so that a group is included in the displayed results if any of its children are included in the filter. Children that do not match the filter are also displayed as part of the group.
Alerts section Copied
The Alerts section shows a list of all alerts received in the selected time interval in chronological order.
Field | Description |
---|---|
Dimension | Shows the entity that triggered the alert by listing its dimensions in hierarchical order. |
Severity | Severity level of the alert. Colour coded to match the highest severity. |
Age | Time since the alert was triggered. |
Signals section Copied
This section shows all signals contributing to an alert. Alerts are organised hierarchically so that the signals section of a selected entity shows the severity of its children as signals.
A parent entity inherits the maximum severity of its children. However, if an entity is snoozed then its severity is not taken into account when determining the severity of the parent entity.
You can expand a specific signal to see the changes in that metric over time. An expanded signal shows the changes to severity status on the left-hand side and the changes to the value of the metric on the right-hand side.
Snooze Copied
An entity is snoozed if it has the snoozed
attribute. Currently, Snooze messages are only sent by Geneos based on user-actions in the Active Console.
The snoozed
attribute can have one of the following string values:
none
: No triggered snooze events on the entity itself, its logs, or metrics.partial
: At least one triggered snooze event on an entity metric or log and none on the entity itself.full
: At least one triggered snooze event on the entity itself.