Forum Discussion

Neophyte

14 days ago

Ideas for devices generating a lot of alerts

I'm looking to be more proactive about the alerts occurring in my portal. I was hoping to create some logic where if a device generates a certain number of warnings over the course of seven days, gen...

Cole_McDonald

Professor

13 days ago

Not specifically... some of the collector script amount data is similar to them... I'm using get-winevent in powershell to filter logname=security, id=4625, startdate=(get-date).addminutes(-5)

Then setting the collection frequency to 5 minutes (matching the addminutes)... if 15 minutes, change that to -15... 30m = -30

I grab those remote, then pull back the result to the collector and do followup processing there to save load on the customer's production environment.

$badPass = $events | where message -match "006A"

write-output "badpass = $($badpass.count)"

Pick that up in a datapoint and you're good to go. Basically, grab a set of things from a specific timeframe that matches the collection frequency... then count them and pass that number to a datapont using key/value interpretation

Forum Discussion

Ideas for devices generating a lot of alerts

Related Content

New Widget display Dead Devices

SNMP Traps - Baseline for alerting

Network Device latency Report

LogicMonitor Device Provisioning Workflow Diagram?

REST API Device SLA Widget

Recent Discussions

Mismatch in Account Information data in uiv3 and uiv4 pages

Non-Administrator Users Unable To Manage Resource Threshold

ISP network monitoring

Does anyone monitor their iDracs with LM? Tons of duplicate alerts

CIM vs. WMI as native 'Source type