Skip to main content

Alerts

Alerts are important signals that show possible problems in a computer system. They need the attention of experts like DevOps, System Administrators, and SRE teams. Alerts are meant to make you aware and watch out for potential issues in the computer system. They act like early warning signs, helping you to notice and fix problems before they become serious.

To access the Alerts page, follow these steps:

  1. Navigate to Global View.

  2. Click on Alerts.

    The Alerts page opens.

    Alert_up_db.png

Interface Layout and Components

The Alerts page displays a comprehensive alert management dashboard featuring a primary filter bar at the top where you can add or clear filters such as Source, Resource Group, or any additional filter categories, and a summary section with alert status cards showing the status, such as Open, Working, Resolved, Closed, Total, and counts by severity. A search bar enables keyword filtering within alert descriptions, while a customizable table lists individual alerts with columns for details like description, repeat count, insights, source, entity type/name, timestamps, and visibility level, alongside options for editing visible columns, selecting a time range, and exporting alert data. This page allows you granular control for custom filtering and managing alerts.

Alert_Custom_filter.png

Number

Feature

Description

1

Source Type and Add filter

  • Source Type: You can select the source of the Alerts that you are analyzing. It filters and identifies alerts based on the originating module or monitoring source, such as IO, CO, SO, or CCM.

  • Add filter: Use the (Plus_icon.png) button to manage the filter for specific alert types, such as SubStatus, Severity, Priority, Manager, and more.

2

Alert status tabs

The alert status provides sufficient information to quickly recognize an event's current state. You can view the count of the alerts and their severity in a specific state.

3

Search bar

You can quickly find and filter alerts using the smart, case-insensitive search bar. You can enter keywords or full sentences for filtering. It searches across alert description, entity name, application, tags, and related entities. This ensures the system returns all relevant matching alerts, not just those that match the main description.

4

Edit Columns

Here, you can customize displayed columns, including entity name, type, ID, first seen, last seen, rule ID, and repeat count. This customization empowers you to choose, include, or exclude columns for a personalized and efficient monitoring experience.

5

Alert details

Alert details collectively offer a comprehensive overview of the alerts, their properties, and associated entities, facilitating efficient monitoring, analysis, and resolution within the Global View platform.

6

Actions

  • Show alerts for: Users have the option to select the time frame for which they want to view the alerts. Options include viewing alerts for the present day, 7 days, 15 days, and 30 days, enabling users to focus on alerts within a specific timeframe.

  • Download: To save the alert information locally in PDF format, click Download.

  • Help: Click to open the online help.

Note

The search bar does not support the # character or double quotation marks ("). If your search term includes these characters, the search may fail or return incomplete results.

Note

You can view the alert data on the dashboard according to the selected timeframe.

Edit Columns

The Edit Columns allows you to customize displayed columns, including entity name, type, ID, first seen, last seen, rule ID, and repeat count. This customization empowers you to choose, include, or exclude columns for a personalized and efficient monitoring experience. For example, you can prioritize specific information like entity names or rule IDs based on their preferences, extracting tailored insights from AIOps alert data.

alert1.png

Column Name

Description

Action

Describes the action taken or recommended based on the alert or insight.

  • Acknowledge: Confirm that you’ve seen the alert.

  • Add Note: Attach a note with additional details.

  • Export To JSON: Download the data in JSON format.

  • Close Alert: Dismiss the alert from the view.

Alert Description

Provides a brief description or summary of the alert.

Created By

Indicates the user or system responsible for creating the alert.

Entity ID

A unique identifier for the entity, such as a device, application, or service associated with the alert.

Entity Name

The name or label of the entity associated with the alert.

Entity Type

Specifies the type of entity, such as server, network device, or application generating the alert.

First Seen

Timestamp indicating when the alert was first detected or observed.

Insights

Additional contextual information or analysis related to the alert or entity.

Last Seen

Timestamp indicating when the alert was last observed or updated.

Priority

Indicates the priority level or severity of the alert, often categorized as high, medium, or low.

Related Alerts

Displays any other alerts or incidents linked or correlated with the current alert.

Repeat Count

Number of times the alert has occurred or been triggered within a specific timeframe.

Severity

Level of severity associated with the alert, typically categorized as critical, major, minor, or informational.

Source

Identifies the source or origin of the alert.

Status

The current status, like the open/closed state of the alert.

Sub-Status

Additional status details or sub-categories to further categorize the alert state.

Updated By

Indicates the user or system responsible for the most recent update or action taken on the alert.

Viewing Cost Threshold Alerts in Global View

In Global View, you can monitor unexpected cost changes and take corrective actions on the cloud costs alerts for the thresholds that you define in the CCM Cost Trend panel.

Perform the following steps to view the resulting cost alert in Global View:

  1. Log in to the Global View and click Alerts.

  2. Click the Source Type dropdown, select CCM.

    You can view only CCM cost threshold alerts in the table.

  3. (Optional) Click Plus_icon.png to add and manage the filter options for the particular source alerts.

  4. In the alerts table, click the alert that corresponds to a particular CCM cost threshold alert.

    To view the impacted alert in detail, see Working with Alerts.

Action taken for Alerts

It is essential to follow a structured workflow to ensure timely investigation, resolution, and documentation of the incident. This process helps you maintain cost efficiency, track remediation actions, and facilitate collaboration across teams. You can perform the following actions to clear the alerts.

  1. Acknowledge the alert after the review.

  2. Navigate to the Alert Activity to add a note with your investigation findings or remediation plan.

  3. Execute the recommended action based on the alert findings. See Executing Different Actions.

  4. Close the Alert when the issue has been resolved, or the cost pattern is understood.

  5. Export to JSON or download the alert data if you need to share it for further analysis.

  6. Navigate to the Cost Trend widget and adjust the threshold values and conditions in the widget settings.

In this section: