Alerts
The Alerts section in the Global View gives you a centralized workspace to review and manage alerts across all observability domains. From here, you can see the current alert load, filter by source, and drill into individual alerts for investigation.
Alerts are meant to make you aware and watch out for potential issues in your environment. They act like early warning signs, helping you to notice and fix problems before they become serious incidents.
To open the Alerts page, navigate to Global View > Alerts.
Interface Layout and Components
The Alerts page displays a comprehensive alert management dashboard featuring a primary filter bar at the top where you can add or clear filters such as Source, Resource Group, or any additional filter categories, and a summary section with alert status cards showing the status, such as Open, Working, Resolved, Closed, Total, and counts by severity. A search bar enables keyword filtering within alert descriptions, while a customizable table lists individual alerts with columns for details like description, repeat count, insights, source, entity type/name, timestamps, and visibility level, alongside options for editing visible columns, selecting a time range, and exporting alert data. This page allows you granular control for custom filtering and managing alerts.
Number | Options | Description |
|---|---|---|
1 | Source Type and Add filter |
|
2 | Alert status tabs | The alert status provides the details to recognize an event's current state quickly. You can view the count of the alerts and their severity in a specific state. |
3 | Search bar | You can quickly find and filter alerts using the smart, case-insensitive search bar. You can enter keywords or full sentences for filtering. It searches across alert description, entity name, application, tags, and related entities. This ensures the system returns all relevant matching alerts, not just those that match the main description. |
4 | Edit Columns | Here, you can customize displayed columns, including entity name, type, ID, first seen, last seen, rule ID, and repeat count. This customization empowers you to choose, include, or exclude columns for a personalized and efficient monitoring experience. |
5 | Alert details | Alert details collectively offer a comprehensive overview of the alerts, their properties, and associated entities, facilitating efficient monitoring, analysis, and resolution. |
6 | Actions |
|
Note
The search bar does not support the # character or double quotation marks ("). If your search term includes these characters, the search may fail or return incomplete results.
Note
You can view the alert data on the dashboard according to the selected timeframe.
Edit Columns
The Edit Columns allows you to customize displayed columns, including entity name, type, ID, first seen, last seen, rule ID, and repeat count. This customization lets you to choose, include, or exclude columns for a personalized and efficient monitoring experience. For example, you can prioritize specific information like entity names or rule IDs based on their preferences, extracting tailored insights from AIOps alert data.
Column Name | Description |
|---|---|
Action | Describes the action taken or recommended based on the alert or insight.
|
Alert Description | Provides a brief description or summary of the alert. |
Created By | Indicates the user or system responsible for creating the alert. |
Entity ID | A unique identifier for the entity, such as a device, application, or service associated with the alert. |
Entity Name | The name or label of the entity associated with the alert. |
Entity Type | Specifies the type of entity, such as server, network device, or application generating the alert. |
First Seen | Timestamp indicating when the alert was first detected or observed. |
Insights | Additional contextual information or analysis related to the alert or entity. |
Last Seen | Timestamp indicating when the alert was last observed or updated. |
Priority | Indicates the priority level or severity of the alert, often categorized as high, medium, or low. |
Related Alerts | Displays any other alerts or incidents linked or correlated with the current alert. |
Repeat Count | Number of times the alert has occurred or been triggered within a specific timeframe. |
Severity | Level of severity associated with the alert, typically categorized as critical, major, minor, or informational. |
Source | Identifies the source or origin of the alert. |
Status | The current status, such as the open/closed state of the alert. |
Sub-Status | Additional status details or sub-categories to further categorize the alert state. |
Updated By | Indicates the user or system responsible for the most recent update or action taken on the alert. |
Viewing Cost Threshold Alerts in Global View
In Global View, you can monitor unexpected cost changes and take corrective actions on the cloud costs alerts for the thresholds that you define in the CCM Cost Trend panel.
Perform the following steps to view the resulting cost alert in Global View:
Log in to the Global View and click Alerts.
Click the Source Type dropdown, select CCM.
You can view only CCM cost threshold alerts in the table.
(Optional) Click
to add and manage the filter options for the particular source alerts.In the alerts table, click the alert that corresponds to a particular CCM cost threshold alert.
To view the impacted alert in detail, see Working with Alerts.
Action taken for Alerts
It is essential to follow a structured workflow to ensure timely investigation, resolution, and documentation of the incident. This process helps you maintain cost efficiency, track remediation actions, and facilitate collaboration across teams. You can perform the following actions to clear the alerts.
Acknowledge the alert after the review.
Navigate to the Alert Activity to add a note with your investigation findings or remediation plan.
Execute the recommended action based on the alert findings. See Executing Different Actions.
Close the Alert when the issue has been resolved, or the cost pattern is understood.
Export to JSON or download the alert data if you need to share it for further analysis.
Navigate to the Cost Trend widget and adjust the threshold values and conditions in the widget settings.